[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 6to4 security questions

To: Francis Dupont <Francis.Dupont@enst-bretagne.fr>
Subject: Re: 6to4 security questions
From: Pekka Savola <pekkas@netcore.fi>
Date: Thu, 21 Nov 2002 16:23:45 +0200 (EET)
Cc: Alain Durand <Alain.Durand@sun.com>, Erik Nordmark <Erik.Nordmark@sun.com>, Jason Goldschmidt <jgoldsch@eng.sun.com>, <v6ops@ops.ietf.org>
Delivery-date: Thu, 21 Nov 2002 06:25:48 -0800
Envelope-to: v6ops-data@psg.com
In-reply-to: <200211210153.gAL1rwte036975@givry.rennes.enst-bretagne.fr>
Sender: owner-v6ops@ops.ietf.org

On Thu, 21 Nov 2002, Francis Dupont wrote:
>    The amount of harm one can do is similar, but the model seems otherwise a
>    bit different.
>    
>    Mobile nodes _were able to_ (speaking about the old spec where unverified
>    HAO was still ok) communicate without HAO's.  Your regular honest 6to4
>    node can't as it's its only address; they have no care-of addresses for
>    bootstrapping, regular/no-frills operation, etc.
>    
> => I don't buy this argument: 6to4 is not the only transition technology.

Yes, it isn't -- but when 6to4 is used, there are no other, concurrently 
used transition technologies.

-- 
Pekka Savola                 "Tell me of difficulties surmounted,
Netcore Oy                   not those you stumble over and fall"
Systems. Networks. Security.  -- Robert Jordan: A Crown of Swords

References:
- Re: 6to4 security questions
  - From: Francis Dupont <Francis.Dupont@enst-bretagne.fr>

Prev by Date: Re: isatap-07 draft offered as last-call
Next by Date: Re: 6to4 security questions
Previous by thread: Re: 6to4 security questions
Next by thread: Re: 6to4 security questions
Index(es):
- Date
- Thread