[TriLUG] protection against IPv6 attacks
Greg Brown
gwbrown1 at gmail.com
Mon Jul 6 10:15:41 EDT 2009
Actually 2001::/16 is the square the size of the entire IPv4 addressable
space, so it's pretty huge. It also contains both routable and non-routable
ranges. For instance 2001:0DB8::/32 is a non-routable block used for
documentation purposes.
As a side note you'd also succeed in blocking all of Google (2001:4860://32)
among others.
Greg
On Mon, Jul 6, 2009 at 10:07 AM, Brian McCullough <bdmc at bdmcc-us.com> wrote:
> On Sun, Jul 05, 2009 at 09:34:33PM -0400, Cristóbal Palmer wrote:
> > Howdy folks. I'd like to do more IPv6, but Kevin Otte just pointed out
> > these bugs:
> >
> > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=464135
> >
>
> Cristobal,
>
> I am confused by this report.
>
> In it he says that he put "2001" into /etc/hosts.deny. He then states
> that he looked at "hosts.deny", presumably "/etc/hosts.deny" and it is
> different, "ssh: 2001". What changed the contents of that file?
> Besides, "2001" could be considered equivalent to a Class A IPv4
> address. Does he really want to block all of 2001?
>
>
> Brian
>
> --
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG FAQ : http://www.trilug.org/wiki/Frequently_Asked_Questions
>
More information about the TriLUG
mailing list