Monkeying Around on the APE

Presented at Kiwicon 4: The four e:Sheep-persons of the Cyber Infopocalypse (2010), Nov. 27, 2010, 2:45 p.m. (30 minutes)

Internet Exchange Points (IXPs) exist all over the world for the purpose of, as the name suggests, exchanging internet dataz between networks. They're a pretty good way of keeping local traffic off transit links which has all sorts of benefits for network operators consumers of internets alike. For relatively low cost, IXPs can also get an attacker layer 2 adjacent to a significant number of ISP routers for fun and profit. Sometimes those routers do things that their operators might not expect, and sometimes they do things that their operators probably don't want them to be doing. Some of the reasons why connecting a Serious ISP Network to an IXP should be approached with a little more caution than it currently appears to be will be covered, along with some examples of what happens when appropriate precautions are not taken.


Presenters:

  • Mike Jager
    Mike is Not A Security Professional, but does have keen interest in all things beer. This seems to fit in well with the security industry's interests. He recently completed a 6 year stint at a web hosting outfit, where he herded packets, muttered at clouds, played Postman Pat, and snuck up on web applications, tricking them into scaling horizontally when they least expected it. Having now jumped from the content-hosting to the content-consuming side of the internet services fence, he firmly believes that 240/4 is the solution to IPv4 address exhaustion. And if that doesn't save us, then large-scale NAT will.

Links:

Similar Presentations: