[88660] in North American Network Operators' Group
Re: Interesting paper by Steve Bellovin - Worm propagation in a v6
daemon@ATHENA.MIT.EDU (Todd Vierling)
Tue Feb 14 20:47:08 2006
Date: Tue, 14 Feb 2006 20:46:22 -0500 (Eastern Standard Time)
From: Todd Vierling <tv@duh.org>
To: Mark Andrews <Mark_Andrews@isc.org>
Cc: nanog@merit.edu
In-Reply-To: <200602142312.k1ENCxcA043917@drugs.dv.isc.org>
Errors-To: owner-nanog@merit.edu
On Wed, 15 Feb 2006, Mark Andrews wrote:
> One of method missing is doing top down random walks of ip6.arpa.
That's only easy if delegation were on a per-nybble basis, which is commonly
not the case. Because there are not typically NS's at every nybble level,
you have to do more than one hex digit's worth of randomness in the scan in
order to find a next-level delegation, increasing the cost of scanning that
namespace quite a bit.
(Having delegations at every nybble level would be ... alarming at best,
given the amount of PTR redirection that implies. :)
--
-- Todd Vierling <tv@duh.org> <tv@pobox.com> <todd@vierling.name>
