Stories
Slash Boxes
Comments

SoylentNews is people

This discussion has been archived. No new comments can be posted.
For my devices that support it, I have implemented IPv6 . . . | Log In/Create an Account | Top | 21 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 1, Informative) by Anonymous Coward on Wednesday July 10 2024, @05:04PM

    by Anonymous Coward on Wednesday July 10 2024, @05:04PM (#1363666)

    with IPv6 the "whatismyip" result is exactly what "ifconfig" prints out, which makes me think IPv6 is less safe.

    You are right, but there are workarounds. Unfortunately they are often not enabled by default in operating systems.

    Every host in your network having and using a unique, fixed, globally-routable IPv6 address is most definitely very bad from a privacy perspective because it allows your systems to be reliably identified individually. The usual way IPv6 addresses are assigned has the local part derived from a MAC address which (usually) never changes so you can also use these addresses to reliably identify hosts that are moved around between different networks.

    With IPv6 you definitely want to be using the so-called privacy extensions [ietf.org]. In a nutshell this has every host generate new random addresses periodically and these should be the only ones used for outgoing connections. If this sounds a lot more complex than before, it is.

    Starting Score:    0  points
    Moderation   +1  
       Informative=1, Total=1
    Extra 'Informative' Modifier   0  
    Total Score:   1