On 12/16/2014 04:29 PM, Ruben Safir wrote:
On Tue, Dec 16, 2014 at 08:44:20PM +0100, Per Jessen wrote:
John Andersen wrote:
On 12/16/2014 11:24 AM, James Knott wrote:
IPV6 opens more security issues than most people think. Firewalls are going to be even more important. +1
+2 which is a good reason to avoid it until forced to use it.
Since you're such an expert, care to elaborate? In some repects IPv6 is more secure than IPv4. One common attack in IPv4 is to ping all the addresses until something is found to attack. According to one article I read recently, to do so in a single /64 subnet, it would take some 5000 years to find a host to attack. A /64 subnet is the smallest an ISP can hand out. I have a /56, which is 256x a /64 or about a trillion times the entire IPv4 address space. As I mentioned earlier, IPSec was designed for IPv6 and later adapted to IPv4. There are also other measures to prevent intrusions or other network issues that are simply not possible to accomplish in IPv4.
Besides, there really are still plenty of IP addresses if they just free up space and if the private networks would get off the public addressing.
Given there are already more mobile devices than IPv4 addresses, ignoring the fact that most of those addresses are already taken, how is that possible. Also, despite the enormous IPv6 address range, private addresses are still supported.
IP6 is a disaster.
Again, please explain why. Also bear in mind it was designed in consideration of the good and bad points of IPv4. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org