Re: I-D ACTION:draft-jabley-ipv6-rh0-is-evil-00.txt

Joe Abley <jabley@ca.afilias.info> Mon, 14 May 2007 12:23 UTC

Return-path: <ipv6-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HnZZy-00077B-QY; Mon, 14 May 2007 08:23:06 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HnZZx-000776-3T for ipv6@ietf.org; Mon, 14 May 2007 08:23:05 -0400
Received: from monster.hopcount.ca ([199.212.90.4]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1HnZZv-0006NP-OY for ipv6@ietf.org; Mon, 14 May 2007 08:23:05 -0400
Received: from [64.235.108.48] (helo=[192.168.182.60]) by monster.hopcount.ca with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.64 (FreeBSD)) (envelope-from <jabley@ca.afilias.info>) id 1HnZcX-0005RB-19; Mon, 14 May 2007 12:25:45 +0000
In-Reply-To: <20070511211827.GA28615@walton.maths.tcd.ie>
References: <31D43DED-5BEE-4730-8FCB-476FA9EE1A97@eads.net> <46432309.1020902@innovationslab.net> <m2tzukn0xp.wl%gnn@neville-neil.com> <ED9B698C-6892-4FE8-87FD-02372C4DA338@ca.afilias.info> <m1irb0umsu.wl%jinmei@isl.rdc.toshiba.co.jp> <145F856D-2CD6-4964-8256-33D20B5336BD@hongo.wide.ad.jp> <20070511211827.GA28615@walton.maths.tcd.ie>
Mime-Version: 1.0 (Apple Message framework v752.3)
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Message-Id: <B2AF1B88-C9C6-429D-B9C6-E397EEB77C40@ca.afilias.info>
Content-Transfer-Encoding: 7bit
From: Joe Abley <jabley@ca.afilias.info>
Date: Mon, 14 May 2007 08:22:38 -0400
To: David Malone <dwmalone@maths.tcd.ie>
X-Mailer: Apple Mail (2.752.3)
X-Spam-Score: 0.0 (/)
X-Scan-Signature: ffa9dfbbe7cc58b3fa6b8ae3e57b0aa3
Cc: ipv6@ietf.org
Subject: Re: I-D ACTION:draft-jabley-ipv6-rh0-is-evil-00.txt
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "IP Version 6 Working Group \(ipv6\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
Errors-To: ipv6-bounces@ietf.org

On 11-May-2007, at 17:18, David Malone wrote:

> This is why I think someone might want to turn RH0 back on again
> (to get this feature on their own network). They can filter at the
> border to prevent external abuse, and use the usual procedures to
> deal with internal abuse. This is also the sort of feature that
> ordinary users are not likely to use, which is why I think it is
> reasonable to have it off by default.

There seem to be many daily examples of very large numbers of client  
machines being controlled remotely to participate in activities that  
the owner/operators of those machines aren't aware of. If there's a  
hook available to turn RH0 processing back on, and RH0 is useful to  
the kind of people who control botnets today, then I think it's a  
fair bet that RH0 will be turned back on regardless of the default  
setting is.

If RH0 is not a useful mechanism to facilitate wide-scale network  
abuse, then I would not expect this to happen (but then, if RH0 is so  
benign, why are we talking? :-)


Joe



--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------