IPv6 Security [Was: Re: misunderstanding scale]

Mark Tinka mark.tinka at seacom.mu
Mon Mar 24 06:51:03 UTC 2014


On Monday, March 24, 2014 01:37:52 AM Timothy Morizot wrote:

> Yes. As I said, same general sorts of risks for the most
> part as in IPv4. Details differ, but same general types.
> My point was that it's mostly FUD to wave the flag of
> scary new security weaknesses with no mitigations in
> IPv6. It's the same general sort of first hop and link
> security issues that exist in IPv4 with similar
> mitigations. Not identical, but not radically different
> or new either.

While the mitigations may not exist yet (like proper 
firewalls in CPE to protect GUA'ed devices in the home), it 
still a good idea to bring the risks to light so folk can 
think about how to get them fixed.

Mark.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20140324/fd02bfba/attachment.bin>


More information about the NANOG mailing list