On Thu, Aug 29, 2002 at 10:10:32PM +0300, Pekka Savola wrote:
On Thu, 29 Aug 2002, Steve Deering wrote:
This issue was addressed a *long* time ago -- please see
http://playground.sun.com/ipv6/specs/ipv6-address-privacy.html
from November of 1999. Your source has either a very shallow
or
In your previous mail you wrote:
Only parts of this issue were properly fixed. Indeed, some (mostly
related to user tracking) seem to be unfixable.
Please clarify. Are there existing problems in IPv6 that we have
neglected to fix that you believe we can fix?
Or are
On Fri, 30 Aug 2002, David Terrell wrote:
Thanks for checking the rfc3041 considered harmful draft.
Interesting read. A few points --
The idea that attackers could use privacy addresses to obscure the
source of attacks is interesting, but that's really an artifact of
the /64 prefix per
On Fri, Aug 30, 2002 at 10:52:31AM +0300, Pekka Savola wrote:
but otherwise I don't see how 3041 isn't an adequate answer to the
specific problem of privacy in IPv6 as related to using EUI-64,
not the wider problem of general privacy in IPv6. That's a much
harder problem to solve.
I
On Fri, 30 Aug 2002 [EMAIL PROTECTED] wrote:
4. Suggested protocol change
o In IPv4 address architecture document [Hinden, 1998] explicitly state
that IPv4 mapped address is for use within basic API [Gilligan, 1999]
, and basic API only. Forbid any other uses.
You may recall someone
Pekka Savola [EMAIL PROTECTED] writes:
If ISP's assign /48 prefixes to homes, those will be trackable. RIR's
also have expressed a requirement to have contact information etc. for
every prefix in the WHOIS database.
RIRs need to be able to verify that an ISP really does have all the
In your previous mail you wrote:
4. Suggested protocol change
o In IPv4 address architecture document [Hinden, 1998] explicitly state
that IPv4 mapped address is for use within basic API [Gilligan, 1999]
, and basic API only. Forbid any other uses.
= I don't like at
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Duplicate Address Detection Optimization using IPv6
Multicast Listener Discovery
Author(s) : G. Daley, R. Nelson
Filename:
Hi Itojun,
o In IPv4 address architecture document [Hinden, 1998] explicitly state
that IPv4 mapped address is for use within basic API [Gilligan, 1999]
, and basic API only. Forbid any other uses.
I don't have a problem with this concept. In fact, I thought that we
had two ways to
On Fri, 30 Aug 2002, Margaret Wasserman wrote:
o In IPv4 address architecture document [Hinden, 1998] explicitly state
that IPv4 mapped address is for use within basic API [Gilligan, 1999]
, and basic API only. Forbid any other uses.
I don't have a problem with this concept. In
- Original Message -
From: Francis Dupont [EMAIL PROTECTED]
= the second IMHO. In fact the real problem (true anonymity) is
very hard to solve (and is not even IP-specific).
True anonymity is not hard to solve, if you start with an **architecture** that
addresses it.
By the
We would like to give our comment regarding rfc2507 IP Header compression to fulfill
our requirement of our minor assignment. Please feel free to give any comment. Thank
you very much.
If you're interested, it is also available at the following URL:
o Move any document that suggests the use of IPv4 mapped address on wire
to historic, due to security reasons.
Which documents would this include? SIIT?
Only non-algorithmic portions of SIIT. (Or else NAT-PT should have to be
rewritten to be independent).
Any others?
The -00
o Move any document that suggests the use of IPv4 mapped address on wire
to historic, due to security reasons.
= you are a bit hard: these mechanisms should simply use other
injections of the IPv4 address space into the IPv6 address space
(there are many ways to inject a 2^32 space into a
The way MLD works today, if you don't have a valid link-local address to
use as the IP Source, you use the unspecified address instead. It sounds
like (section 4.1) you want to change this? I assume so the router can
unicast a response. I think this is a problem because until DAD
completes for
15 matches
Mail list logo
