> If the regime controls the local-link, then as far as address-tracking is > concerned, you're toast. -- They could sniff the >network and log the address->MAC mappings, have RAs require you to do DHCPv6 >and then have DHCPv6 assign you a > constant address, etc.
The obvious solution is to randomize the MAC address, and I would definitely want to do that when visiting untrusted networks. Of course, randomizing the MAC address is necessary but not sufficient. There are many other ways in which our computer leak information. DHCP messages, for example, contains names and other identifiers. Computers connecting to a network issue a flurry of DNS lookups that can make for good signatures. Etc. -- Christian Huitema -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------