Dave, > [...] > >> How could anyone build a security device that is incapable of >> filtering out packets that use 1/16th of the address space? >> > [...] > > You missed the point. If some software won't accept class E addresses in its > configuration, it's a problem. >
It's a problem, but it's not a security problem. I think you are referring to some of the security problems that folks have run into with early IPv6 implementations and deployments. Here the situation is quite different. We have a defined behavior (drop). It's conceivable that someone left 240/4 off the bogon list in one place and not another, but again, in this case in particular the problem is sure to have made itself known already, because hackers would have made use of the space, if nobody else. Eliot _______________________________________________ Int-area mailing list [email protected] https://www1.ietf.org/mailman/listinfo/int-area
