nanog mailing list archives

Re: using "reserved" IPv6 space

From: Randy Bush <randy () psg com>
Date: Sun, 15 Jul 2012 06:50:12 +0900

The fact that your prefix is a Secret Sauce that isn't known to the
rest of the world won't matter much to an attacker.  One 'ifconfig' on
whatever beachhead machine the attacker has inside your net, and it's
not Secret Sauce anymore, it's just another bottle of Thousand Island
dressing...


security through obsurity is such tempting koolaid.  people fall for it
continually and repeatedly.

i especially like the one where filtering ula at your border is thought
to be any different than filtering a bit of global at your border.

randy

Current thread:

Re: using "reserved" IPv6 space, (continued)
- - - Re: using "reserved" IPv6 space Doug Barton (Jul 17)
    - Re: using "reserved" IPv6 space Owen DeLong (Jul 16)
    - Re: using "reserved" IPv6 space Oliver (Jul 17)
    - Re: using "reserved" IPv6 space Jimmy Hess (Jul 16)
    - Re: using "reserved" IPv6 space -Hammer- (Jul 17)
    - Re: using "reserved" IPv6 space Saku Ytti (Jul 17)
    - Re: using "reserved" IPv6 space -Hammer- (Jul 17)
    - Re: using "reserved" IPv6 space Doug Barton (Jul 17)
    - Re: using "reserved" IPv6 space Ray Soucy (Jul 17)
    - Re: using "reserved" IPv6 space valdis . kletnieks (Jul 14)
    - Re: using "reserved" IPv6 space Randy Bush (Jul 14)
    - RE: using "reserved" IPv6 space Tony Hain (Jul 14)
    - Re: using "reserved" IPv6 space Randy Bush (Jul 14)
    - Re: using "reserved" IPv6 space Grzegorz Janoszka (Jul 15)
    - Re: using "reserved" IPv6 space Scott Morris (Jul 15)
    - Re: using "reserved" IPv6 space Cameron Byrne (Jul 15)
    - Re: using "reserved" IPv6 space Grzegorz Janoszka (Jul 15)
    - Re: using "reserved" IPv6 space Mike Jones (Jul 15)
    - Re: using "reserved" IPv6 space Owen DeLong (Jul 15)
    - Re: using "reserved" IPv6 space Scott Morris (Jul 15)
    - Re: using "reserved" IPv6 space Jimmy Hess (Jul 14)

(Thread continues...)