[OPSEC] New IETF I-D "Host Scanning in IPv6 Networks" (draft-gont-opsec-ipv6-host-scanning-00.txt)
Fernando Gont <fernando@gont.com.ar> Fri, 20 April 2012 09:57 UTC
Return-Path: <fernando.gont.netbook.win@gmail.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 341E221F8749 for <opsec@ietfa.amsl.com>; Fri, 20 Apr 2012 02:57:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TDfAixvLTA0T for <opsec@ietfa.amsl.com>; Fri, 20 Apr 2012 02:57:22 -0700 (PDT)
Received: from mail-yx0-f172.google.com (mail-yx0-f172.google.com [209.85.213.172]) by ietfa.amsl.com (Postfix) with ESMTP id 992B921F8533 for <opsec@ietf.org>; Fri, 20 Apr 2012 02:57:22 -0700 (PDT)
Received: by yenm5 with SMTP id m5so5764347yen.31 for <opsec@ietf.org>; Fri, 20 Apr 2012 02:57:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:subject :x-enigmail-version:content-type:content-transfer-encoding; bh=PkFXdkwNR2TssrWvb5eOwZh4bS7zX0l5Bz91NXlk4qY=; b=TgiUwvFFt6ffmEl0N8L24m9OqtLfr2LUgPzMKCQoyH8XCBGCvSPjAtn0NXNNqyngB7 tEMukzk2JR7XkOSDIvuVhiN4OGChFXoE9wYEERnnYGJ9SIxZyrTPQl+ifsFCO9pC7+IY OyQshpWEQAFaBsDq7p/YveZ09bO40GTdwK4I9Ppig1/ivL/DfnIglNpIcOQaWx0TYMy6 lnURohSBKezvgDzLJrm7YgQXqaycdn75aGHB7pFuzNdkpYWzOHplVmUMXze0iNeVUZFD l1aszoENxJmn4bxkbAEJs/36Eun6FJ3RNXrT9kYxigu3g/1XUojKp0L4ydtqONJKySqY PU9Q==
Received: by 10.236.155.226 with SMTP id j62mr5401440yhk.30.1334915842183; Fri, 20 Apr 2012 02:57:22 -0700 (PDT)
Received: from [192.168.123.103] ([186.134.15.183]) by mx.google.com with ESMTPS id k35sm3652829ani.3.2012.04.20.02.57.19 (version=SSLv3 cipher=OTHER); Fri, 20 Apr 2012 02:57:20 -0700 (PDT)
Sender: Fernando Gont <fernando.gont.netbook.win@gmail.com>
Message-ID: <4F9132FE.2090209@gont.com.ar>
Date: Fri, 20 Apr 2012 06:57:18 -0300
From: Fernando Gont <fernando@gont.com.ar>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.28) Gecko/20120313 Thunderbird/3.1.20
MIME-Version: 1.0
To: "'opsec@ietf.org'" <opsec@ietf.org>
X-Enigmail-Version: 1.1.2
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Subject: [OPSEC] New IETF I-D "Host Scanning in IPv6 Networks" (draft-gont-opsec-ipv6-host-scanning-00.txt)
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Apr 2012 09:57:23 -0000
Hi, folks, FYI. Available at: <http://www.ietf.org/id/draft-gont-opsec-ipv6-host-scanning-00.txt> Thanks, Fernando -------- Original Message -------- Subject: New Version Notification for draft-gont-opsec-ipv6-host-scanning-00.txt Date: Thu, 19 Apr 2012 23:12:17 -0700 From: internet-drafts@ietf.org To: fernando@gont.com.ar A new version of I-D, draft-gont-opsec-ipv6-host-scanning-00.txt has been successfully submitted by Fernando Gont and posted to the IETF repository. Filename: draft-gont-opsec-ipv6-host-scanning Revision: 00 Title: Host Scanning in IPv6 Networks Creation date: 2012-04-20 WG ID: Individual Submission Number of pages: 18 Abstract: IPv6 offers a much larger address space than that of its IPv4 counterpart. The standard /64 IPv6 subnets can (in theory) accommodate approximately 1.844 * 10^19 hosts, thus resulting in a much lower host density (#hosts/#addresses) than their IPv4 counterparts. As a result, it is widely assumed that it would take a tremendous effort to perform host scanning attacks against IPv6 networks, and therefore IPv6 host scanning attacks have long been considered unfeasible. This document analyzes the IPv6 address configuration policies implemented in most popular IPv6 stacks, and identifies a number of patterns in the resulting addresses lead to a tremendous reduction in the host address search space, thus dismantling the myth that IPv6 host scanning attacks are unfeasible. The IETF Secretariat
- [OPSEC] New IETF I-D "Host Scanning in IPv6 Netwo… Fernando Gont