NDP DoS attack (was Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?))

Jared Mauch jared at puck.nether.net
Fri Jul 15 03:12:15 UTC 2011


http://tools.ietf.org/html/draft-gashinsky-v6nd-enhance-00

Sent from my iThing

On Jul 14, 2011, at 10:57 PM, Fernando Gont <fernando at gont.com.ar> wrote:

> On 07/14/2011 11:35 PM, Jared Mauch wrote:
> 
>>> Well, unless there's some layer-2 anti-spoofing mitigation in
>>> place, with /64 subnets the "local attacker" typically *will* have
>>> enough addresses.
>> 
>> Solving a local attack
> 
> Well, I was talking about not *introducing* ;-) one.
> 
> 
>> is something I consider different in scope
>> than the current draft being discussed in 6man, v6ops, ipv6@ etc...
> 
> Which I-D are you referring to?
> 
> Thanks,
> -- 
> Fernando Gont
> e-mail: fernando at gont.com.ar || fgont at acm.org
> PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
> 
> 




More information about the NANOG mailing list