nanog mailing list archives
Be aware of SLAAC adresses
From: Jérôme Nicolle <jerome () ceriz fr>
Date: Wed, 8 Jun 2011 12:29:29 +0200
Hi ! To all contributors to this wonderful IPv6 day, juste a short notice : please avoid SLAAC adresses on your public servers ! First, in case of an hardware crash, the recovery will be done under presure and most will forget about forcing the new server's mac adress to the old one, wich will delay the recovery Second, it's beeing a little too transparent as the MAC adress may reveal the server's manufacturer, approximate manufacturing tdate, or the network controler model. Some may use it as a clue to design a proper exploit... Just a nightly thought while monitoring seen IPv6 adresses ;) -- Jérôme Nicolle
Current thread:
- Be aware of SLAAC adresses Jérôme Nicolle (Jun 08)
- Re: Be aware of SLAAC adresses Jay Ashworth (Jun 08)