Re: [v6ops] SLAAC renum: Problem Statement & Operational workarounds

Owen DeLong <owen@delong.com> Tue, 29 October 2019 17:32 UTC

Return-Path: <owen@delong.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BDEA120AF6 for <v6ops@ietfa.amsl.com>; Tue, 29 Oct 2019 10:32:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.999
X-Spam-Level:
X-Spam-Status: No, score=-6.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=delong.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h_kKmJFPhN1D for <v6ops@ietfa.amsl.com>; Tue, 29 Oct 2019 10:32:11 -0700 (PDT)
Received: from owen.delong.com (owen.delong.com [IPv6:2620:0:930::200:2]) by ietfa.amsl.com (Postfix) with ESMTP id 4A8DE120ABE for <v6ops@ietf.org>; Tue, 29 Oct 2019 10:32:04 -0700 (PDT)
Received: from [199.187.216.130] ([199.187.216.130]) (authenticated bits=0) by owen.delong.com (8.15.2/8.15.2) with ESMTPSA id x9THVQb8018177 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 29 Oct 2019 10:31:29 -0700
DKIM-Filter: OpenDKIM Filter v2.11.0 owen.delong.com x9THVQb8018177
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=delong.com; s=mail; t=1572370290; bh=1PgQffLpkln4HcnbRy2rpFjEv8xzzvp4fBMCWPdLjPA=; h=Subject:From:In-Reply-To:Date:Cc:References:To:From; b=2DJ+l0Wq9wbXp79E+GQcWXypX8WdYKD7sz2jwmnVA299NIxAiVSEjo+QPbJMWLUKF EpnEc706NQjFdSP0abJHqh1TY0uEni6qYCVIatuh5WlIHL3Hxhxv2chTpemMc8c/yv gvGGReahRLTUU/uk75j5FFc8e1hwpx/AgrTMnR+E=
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.8\))
From: Owen DeLong <owen@delong.com>
In-Reply-To: <BCFEF731-F3A0-472A-B5D3-68F9AB4C97C8@fugue.com>
Date: Tue, 29 Oct 2019 10:31:25 -0700
Cc: Philip Homburg <pch-v6ops-9@u-1.phicoh.com>, v6ops@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <9F8B33B3-3F33-4003-BA34-FCC8B69D8ED8@delong.com>
References: <FA25340B-0CBA-407D-85EB-FB1E26FA3EFF@delong.com> <BCFEF731-F3A0-472A-B5D3-68F9AB4C97C8@fugue.com>
To: Ted Lemon <mellon@fugue.com>
X-Mailer: Apple Mail (2.3445.104.8)
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (owen.delong.com [192.159.10.2]); Tue, 29 Oct 2019 10:31:30 -0700 (PDT)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/1gNJW6VpZIHuL6EaGfChI4TDj3Y>
Subject: Re: [v6ops] SLAAC renum: Problem Statement & Operational workarounds
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Oct 2019 17:32:13 -0000


> On Oct 29, 2019, at 2:43 AM, Ted Lemon <mellon@fugue.com> wrote:
> 
> On Oct 28, 2019, at 11:00 PM, Owen DeLong <owen@delong.com> wrote:
>> 
>> There’s a difference between networks where hostile hosts can occur in extreme circumstances (what you describe) and networks where hostile hosts are expected as a normal occurrence (what I was intending to describe).
> 
> I’m not following your distinction.   Bot infections can happen at any time, on any network.

Bot infections are only one kind of hostile host.

The other kind is malicious actors who have hosts that are permitted on your network.

The former can occur anywhere.

The latter is less common on enterprise networks and more common on university networks and coffee shop networks and other public access networks.

I thought this was pretty clear from my original post.

Owen