[ipv6hackers] the end is near (or for IPv6: the beginning)
Wouter van Bommel
wouter at vanbommelonline.nl
Tue Jan 28 14:07:30 CET 2014
I can imagine that host-2-host ipsec encryption can become popular,
provided that we get a easy to implement solution for key exchange (pki via
dns & dnssec seems promising).
That will also stop a lot of 'sniffing' on the net which is a common
practice at some location, and it will encrypt data irrespective of the
application that is used, so even plain ftp becomes "secure" with respect
to the login phase. (You still have to trust the server to handle password
On Tue, Jan 28, 2014 at 12:56 PM, Tim Chown <tjc at ecs.soton.ac.uk> wrote:
> On 28 Jan 2014, at 11:45, "Schmoll, Carsten" <
> carsten.schmoll at fokus.fraunhofer.de> wrote:
> > Dear Jim, all,
> > I'd kindly like to challenge the following statement, if only the "many"
> in it:
> >> NAT Challenges:
> >> * Many applications use embedded addresses which is broken by NAT
> > I'd like to learn which application are these (still). At a quick
> glance only the following ones come to my mind:
> > * active FTP
> > * SIP?
> > * XMPP?
> > * selected proprietary ones
> > Don't seem to be 'many' so far ...
> Any application that passes IP addresses between peers to avoid DNS
> > Further to that, I am curious, which applications are currently limited
> and harmed by
> >> * Restricts inbound connections (obviously with many limitations)
> > or, asked vice versa, which ones would benefit most from direct
> end-to-end connectivity (where allowed)?
> > I can think of direct E2E/P2P in the form of audio(SIP/RTP), video, data
> (think e.g. torrents) transmission, but which one(s) would benefit/grow the
> Lose the NATs and we'll find out... there should be obvious benefits to
> truly decentralised secure messaging systems.
> Of course there is still firewall traversal, potentially...
> > Best regards
> > Carsten
> > --
> > "With great power comes great responsibility! What power, you ask? UNIX
> root privileges."
> > Carsten Schmoll
> > Fraunhofer FOKUS
> > www.fokus.fraunhofer.de
> > _______________________________________________
> > Ipv6hackers mailing list
> > Ipv6hackers at lists.si6networks.com
> > http://lists.si6networks.com/listinfo/ipv6hackers
> Ipv6hackers mailing list
> Ipv6hackers at lists.si6networks.com
More information about the Ipv6hackers