;login - Worm Propogation and IPv6
Roland Dobbins
rdobbins at cisco.com
Wed Jan 24 11:20:38 CET 2007
On Jan 24, 2007, at 12:16 AM, Roland Dobbins wrote:
> The bad guys will figure them out; it's up to the good guys to
> point them out so that we can do things to protect against them.
I'll also point out that, despite the baseless claims of those who've
asserted that IPv6 somehow provided a 'defense' against worms due to
the large address space, those of us who think about these things
have known about every single one of the techniques discussed in this
paper and talked about them at length. Messrs. Bellovin, Cheswick,
and Keromytis simply wrote them down; no research was required in
order to write this article, it's simply a useful compilation of
'hints' which worm writers may use; also note that none except ND are
IPv6-specific (and ARP can be used in similar fashion in the IPv4
world). They seem to've not discussed Link-Local, but add it to the
list.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins at cisco.com> // 408.527.6376 voice
Technology is legislation.
-- Karl Schroeder
More information about the ipv6-ops
mailing list