[ipv6hackers] my IPv6 insecurity slides
carlosm3011 at gmail.com
Thu Nov 24 11:32:10 CET 2011
I agree with Arturo. While I agree the presented research is extremely
valuable, we need to properly present the problem to the general public,
that is if we want IPv6 to go anywhere. I think we have a PR problem.
Should we had reacted like this in the past, we would have never enabled
IPv4 and we would still be using IPX and SNA.
Shutting it off because the problems described is definitely an over
reaction and as I mentioned before ignores the fact that most attacks
nowadays are application layer attacks. Security recommendations and
related policy should go in hand with a proper risk assessment.
Maybe we we should also reccommend people uninstall their browsers as well.
After all those are pretty insecure.
On Nov 23, 2011 3:43 PM, "Arturo Servin" <aservin at lacnic.net> wrote:
> I do not agree on some on your slides, some other need some update
> after recently work done in the IETF. Some others are really good.
> But agree to disagree is the point of this, isn't it?
> My biggest disagreement is to recommend people to disable IPv6,
> that will take us no-where. I agree that some environments should not
> enable v6 for some reasons, but to generalise the practice seems wrong to
> On 23 Nov 2011, at 15:04, Marc Heuse wrote:
> > Hi guys,
> > I did a lot of presentations on my IPv6 security research since 2005.
> > I condensed most if it into a 2h presentation I performed at the IPv6
> > congress in Frankfurt, Germany in May.
> > I updated the information, and if you are interested in the slides, here
> > is the direct link:
> > http://www.mh-sec.de/downloads/mh-ipv6_vulnerabilities.pdf
> > On a side note, I plan the next thc-ipv6 (will be 2.0) release
> > containing all and every tool (no more private version) to be between
> > March and May 2012.
> > Greets,
> > Marc
> > --
> > Marc Heuse
> > www.mh-sec.de
> > Ust.-Ident.-Nr.: DE244222388
> > PGP: FEDD 5B50 C087 F8DF 5CB9 876F 7FDD E533 BF4F 891A
> > _______________________________________________
> > Ipv6hackers mailing list
> > Ipv6hackers at lists.si6networks.com
> > http://lists.si6networks.com/listinfo/ipv6hackers
> Ipv6hackers mailing list
> Ipv6hackers at lists.si6networks.com
More information about the Ipv6hackers