[138214] in North American Network Operators' Group
Re: Mac OS X 10.7, still no DHCPv6
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Tue Mar 1 00:35:44 2011
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: nanog group <nanog@nanog.org>
Date: Tue, 1 Mar 2011 05:34:44 +0000
In-Reply-To: <99B7A9A2-EBA4-48DB-AB72-D8A157BE1667@internode.com.au>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Mar 1, 2011, at 12:23 PM, Mark Newton wrote:
> That's new, and (to my mind) threatening. We've not even begun to consid=
er the attack vectors that'll open up.
I don't think it's new at all, given the amount of information available to=
day that you already cite, down to and including sniffing on toxic hotel ne=
tworks and the like.=20
Folks are already easily pwn3d to extremes - look at HB Gary. This doesn't=
constitute some huge new attack surface or information leakage - especiall=
y given the existence of VPNs/proxies, the tendency to store more and more =
data/apps on servers/in 'the cloud', and so forth.
In fact, the device one is actually using at any given moment and where one=
is located when using said device is becoming less and less relevant.
>From a physical-security standpoint, leaky IM, SMTP headers, et. al. alread=
y give the game away.
We've been living in this situation for years. Nothing about EUI-64 change=
s this fact, IMHO. I dislike it immensely, but it isn't a game-changer, IM=
HO.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
The basis of optimism is sheer terror.
-- Oscar Wilde
