Stories
Slash Boxes
Comments

SoylentNews is people

posted by janrinok on Monday August 03 2015, @10:16AM   Printer-friendly
from the theory-meet-the-real-world dept.

Address exhaustion is finally about to make us all take IPv6 seriously.

I know the theory; heck, I've even taught the theory in networking courses. What I would like to find - and haven't - is a source of practical information for introducing IPv6 into a network. How should the firewall be set up? What does Apache need, to make a website IPv6 accessible? What about HTTPS? SSH? DNS? What are the security gotchas? Hands-on, practical stuff.

I've looked around for online courses - I've even completed one. Unfortunately, the information was pathetic; I'm not sure I actually learned anything useful. There must be good sources out there. Any Soylentils have recommendations?


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2, Interesting) by pTamok on Monday August 03 2015, @01:33PM

    by pTamok (3042) on Monday August 03 2015, @01:33PM (#217390)

    The implementation may have been flawed, but I'm not convinced it is an architectural mistake to try and 'bake-in' security. It depends on what you are baking in, and how flexible it is e.g. with the ability to change to new encryption algorithms.

    I come from the school of 'the network should be dumb and the end-points intelligent', but I have considerably modified my position in the face of reality and realise it is a bit more complicated than that. Link-based encryption is only really as good as the management of the keys, but in general having something that discourages casual interception is not a bad idea. After all, we have gone from open WiFi to WEP to WPA: if encryption were purely an end-system requirement, none of that would have developed.

    Starting Score:    1  point
    Moderation   +1  
       Interesting=1, Total=1
    Extra 'Interesting' Modifier   0  

    Total Score:   2  
  • (Score: 3, Interesting) by VLM on Monday August 03 2015, @04:11PM

    by VLM (445) Subscriber Badge on Monday August 03 2015, @04:11PM (#217440)

    After all, we have gone from open WiFi to WEP to WPA: if encryption were purely an end-system requirement, none of that would have developed.

    That's primarily to stop people from freeloading on my wifi, using up my transfer cap, illegal downloads.

    If there were a simpler way to keep people off my wifi, then the complicated crypto stuff wouldn't get used.