[184541] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Question re session hijacking in dual stack environments w/MacOS

daemon@ATHENA.MIT.EDU (Mark Tinka)
Wed Oct 7 10:42:30 2015

X-Original-To: nanog@nanog.org
To: Doug McIntyre <merlyn@geeks.org>
From: Mark Tinka <mark.tinka@seacom.mu>
Date: Wed, 7 Oct 2015 16:42:25 +0200
In-Reply-To: <20151002054647.GA57805@geeks.org>
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org



On 2/Oct/15 07:46, Doug McIntyre wrote:

> I suspect this is OSX implementing IPv6 Privacy Extensions. Where OSX
> generates a new random IPv6 address, applies it to the interface, and then
> drops the old IPv6 addresses as they stale out. Sessions in use or not.
>
> sudo sysctl -w net.inet6.ip6.use_tempaddr=0
>
> sudo sh -c 'echo net.inet6.ip6.use_tempaddr=0 >> /etc/sysctl.conf'

Interesting. Thanks, Doug.

I just upgraded to El Capitan, so I'll see if there are any changes in
that when I'm back in the office, and then look at your suggestion if
not. Thanks.

Mark.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[184541] in North American Network Operators' Group

Re: Question re session hijacking in dual stack environments w/MacOS

daemon@ATHENA.MIT.EDU (Mark Tinka)Wed Oct 7 10:42:30 2015

daemon@ATHENA.MIT.EDU (Mark Tinka)
Wed Oct 7 10:42:30 2015