[140754] in North American Network Operators' Group
Re: user-relative names - was:[Re: Yahoo and IPv6]
daemon@ATHENA.MIT.EDU (Steven Bellovin)
Wed May 18 17:22:58 2011
From: Steven Bellovin <smb@cs.columbia.edu>
In-Reply-To: <BFD23017-7D4B-4BB1-9EDD-043CE84555AE@bogus.com>
Date: Wed, 18 May 2011 17:10:39 -0400
To: Joel Jaeggli <joelja@bogus.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On May 17, 2011, at 10:30 13PM, Joel Jaeggli wrote:
>=20
> On May 17, 2011, at 6:09 PM, Scott Weeks wrote:
>=20
>> --- joelja@bogus.com wrote:
>> From: Joel Jaeggli <joelja@bogus.com>
>> On May 17, 2011, at 4:30 PM, Scott Brim wrote:
>>> On May 17, 2011 6:26 PM, <Valdis.Kletnieks@vt.edu> wrote:
>>>> On Tue, 17 May 2011 15:04:19 PDT, Scott Weeks said:
>>>>=20
>>>>> What about privacy concerns
>>>>=20
>>>> "Privacy is dead. Get used to it." -- Scott McNeely
>>>=20
>>> Forget that attitude, Valdis. Just because privacy is blown at one =
level
>>> doesn't mean you give it away at every other one. We establish the =
framework
>>> for recovering privacy and make progress step by step, wherever we =
can.
>>> Someday we'll get it all back under control.
>>=20
>> if you put something in the dns you do so because you want to =
discovered. scoping the nameservers such that they only express certain =
certain resource records to queriers in a particular scope is fairly =
straight forward.
>> --------------------------------------------------------
>>=20
>>=20
>> The article was not about DNS. It was about "Persistent Personal =
Names for Globally Connected Mobile Devices" where "Users normally =
create personal names by introducing devices locally, on a common WiFi =
network for example. Once created, these names remain persistently bound =
to their targets as devices move. Personal names are intended to =
supplement and not replace global DNS names." =20
>=20
> you mean like mac addresses? those have a tendency to follow you =
around in ipv6...
>=20
This is why RFC 3041 (replaced by 4941) was written, 10+ years ago. The =
problem
is that it's not enabled by default on many (possibly all) platforms, so =
I
have to have
# cat /etc/sysctl.conf
net.inet6.ip6.use_tempaddr=3D1
set on my Mac.
--Steve Bellovin, https://www.cs.columbia.edu/~smb
