Re: [systemd-devel] Secret machine-id for RFC 7217 stable addresses

Tom Gundersen wrote in message : > If I understand correctly, most of the point of RFC7217 is achieved > even if the secret key is known. The important point is to have a good > hashing function, and in that case knowing the

Re: [systemd-devel] Secret machine-id for RFC 7217 stable addresses

On 08/10/15 21:47, Tom Gundersen wrote: > On Mon, Sep 7, 2015 at 7:49 PM, Lubomir Rintel wrote: >> This sounds a bit like machine-id, unfortunately given it's world >> readable and available via DBus (and possibly on a network?) it >> doesn'tseem to be secret enough. For context,

Re: [systemd-devel] Secret machine-id for RFC 7217 stable addresses

Hi Lubomir, Sorry not to have responded to this earlier, but as I was just reminded of this, here are my take: On Mon, Sep 7, 2015 at 7:49 PM, Lubomir Rintel wrote: > the RFC 7217 specifies an algorithm for generating an IPv6 host address > that stays stable in a particular

[systemd-devel] Secret machine-id for RFC 7217 stable addresses

Hello, the RFC 7217 specifies an algorithm for generating an IPv6 host address that stays stable in a particular network but changes when the machine enters another network to prevent tracking [1]. It works by hashing a tuple of various parameters one of which is "secret_key" -- a secret value