[CentOS] IPV4 is nearly depleted, are you ready for IPV6?
Adam Tauno Williams
awilliam at whitemice.orgTue Dec 7 16:13:27 UTC 2010
- Previous message: [CentOS] IPV4 is nearly depleted, are you ready for IPV6?
- Next message: [CentOS] IPV4 is nearly depleted, are you ready for IPV6?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, 2010-12-07 at 10:01 -0600, Les Mikesell wrote: > On 12/7/10 9:07 AM, Adam Tauno Williams wrote: > > site-local addresses are officially deprecated. > > If you want a device to only be available locally - block the traffic > > to/from that device. > So security will depend on every connection owner having a high level of > knowledge about ipv6 internals? Yes. Exactly like IPv4! (given that network security professionals have existed for a long time) Install a stateful firewall just like with IPv4! Stateful firewalls being things created by people "having a high level of knowledge about ... internals". Problem solved [for 99.44% of the population], just like IPv4! And to add a nice sprinkling of obscurity - every time your computer reboots [or interface resets] it generates a different ["random"] IPv6 address within your *HUGE* subnet.
- Previous message: [CentOS] IPV4 is nearly depleted, are you ready for IPV6?
- Next message: [CentOS] IPV4 is nearly depleted, are you ready for IPV6?
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the CentOS mailing list