Subject: RE: apps people? Date: Thu, Aug 07, 2003 at 04:05:08PM -0700 Quoting Tony Hain ([EMAIL PROTECTED]): > > draft-hinden-ipv6-global-local-addr-02.txt creates unique addresses, even in > the case where the teenagers have independent boundary routers. Global > access is not generically necesssary or desired. To accomplish your neighbor > scenario, it would make more sense to put PA addresses on the specific > allowed devices than to have the whole network continually exposed to dos > attacks.
By forcing the end user to NAT and hide things behind a "broadband router" or similar device, you now give the attacker one convenient weak spot which, once attacked and brought to its knees, will deny every node in the house network service, especially since this box probably also serves as switch, 802.11 access point, print server and whatnot.. Probably not what you wanted. -- Måns Nilsson Systems Specialist +46 70 681 7204 KTHNOC MN1334-RIPE over in west Philadelphia a puppy is vomiting ...
pgp00000.pgp
Description: PGP signature