[136188] in North American Network Operators' Group
Re: quietly....
daemon@ATHENA.MIT.EDU (Iljitsch van Beijnum)
Tue Feb 1 17:28:28 2011
From: Iljitsch van Beijnum <iljitsch@muada.com>
In-Reply-To: <alpine.BSF.2.00.1102011702000.54349@murf.icantclick.org>
Date: Tue, 1 Feb 2011 23:25:13 +0100
To: david raistrick <drais@icantclick.org>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 1 feb 2011, at 23:03, david raistrick wrote:
> It obfuscates internal addressing.
> This wasn't the original goal, but it's a "feature" that some groups =
of users have come to require.
Creating a new random address every 24 hours (or more often if needed, I =
assume) goes a long way towards that, too.
There's still proxies with IPv6, those also make everything nice and =
obscure, also hide your TCP seqnums and IP IDs etc.=
