Random Port Blocking at Hotels (was: Re: quietly....)
Owen DeLong
owen at delong.com
Sun Feb 6 04:42:08 UTC 2011
On Feb 5, 2011, at 8:30 PM, Matthew Kaufman wrote:
> On 2/5/2011 8:15 PM, Paul Timmins wrote:
>> OR just upgrade your gear, and while you're at it, you can now safely enable IPv6 anyway.
>
> Well, enable IPv6. Safely? I don't see how upgrading your gear magically makes the various security threats -- including the current topic of rogue RAs -- go away.
>
> Matthew Kaufman
Most rogue RAs are problematic on networks that don't have legitimate RAs to override them.
Yes, someone can do a malicious RA, but, the current problem is mostly people doing
accidental RAs thanks to Micr0$0ft's convenient "Click here to screw your neighbors"
buttons.
Owen
More information about the NANOG
mailing list