[170067] in North American Network Operators' Group
Re: IPv6 Security [Was: Re: misunderstanding scale]
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Sun Mar 23 23:13:16 2014
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: NANOG list <nanog@nanog.org>
Date: Mon, 24 Mar 2014 02:56:29 +0000
In-Reply-To: <CAFy81rmSOEBVdxfv9PTH2EBeFgsm+VWe91c3nG=QHxndoRNyUA@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Mar 24, 2014, at 6:37 AM, Timothy Morizot <tmorizot@gmail.com> wrote:
> You'll pardon my skepticism over claims that unspecified security weaknes=
ses make it impossible to do what we have done and are continuing to
> do.
All this unfilterable ICMP makes for interesting times - I've already run a=
cross ND storms caused remotely (deliberately, IMHO). Insane policies such=
as /64s for p2p link addresses don't help, either.
And the consonance of the English letters 'B', 'C', 'D', & 'E' when spoken =
aloud is quite likely to prove a major security issue, IMHO. Time for folk=
s to adopt the phonetic alphabet, if they absolutely must communicate verba=
lly.
IPv6 has all the security issues associated with IPv4, plus a few new ones =
which are unique to IPv6. Denying the latter doesn't make them go away.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
