* Dan Williams > The assumption here is on the side of security, that it's better to send > all traffic to the VPN and fail, than it is to send your traffic over > un-encrypted links when a VPN is supposed to be active and you think > things are encrypted.
That's a pretty good argument for merging these patches, actually. Right now all IPv6 traffic will go unencrypted, even though the VPN is perfectly capable of routing IPv6 to all or parts of ::/0. For me, this merely an annoyance (I always have to do "ssh -4 some.work.system" because IPv6 just times out), but for others this may be a big privacy problem, e.g. as reported here: http://torrentfreak.com/huge-security-flaw-makes-vpns-useless-for-bittorrent-100617/ Tore _______________________________________________ networkmanager-list mailing list networkmanager-list@gnome.org https://mail.gnome.org/mailman/listinfo/networkmanager-list
