[126001] in North American Network Operators' Group
Re: the alleged evils of NAT,
daemon@ATHENA.MIT.EDU (Adrian Chadd)
Wed Apr 28 00:16:59 2010
Date: Wed, 28 Apr 2010 12:16:20 +0800
From: Adrian Chadd <adrian@creative.net.au>
To: Matthew Kaufman <matthew@matthew.at>
In-Reply-To: <4BD7B290.5020609@matthew.at>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Tue, Apr 27, 2010, Matthew Kaufman wrote:
> >Fortunately, the IPv6 address space is so large and sparse, that
> >scanning it would be quite a feat, even if a random outside attacker
> >already knew for a fact that a certain /64 probably contains a
> >vulnerable host.
> All I need to do is run a popular web site on the IPv6 Internet, and I
> get all the addresses of connected hosts I want. That
> address-space-scanning is hard is nearly irrelevant.
or troll popular IPv6 bittorent end points when that becomes popular.
Adrian
