IETF Logo Mail Archive

Re: [v6ops] Default IPv6 Local Only Addressing for Non-Internet Devices (Fwd: New Version Notification for draft-smith-v6ops-local-only-addressing-00.txt)

Dmytro Shytyi <ietf.dmytro@shytyi.net> Tue, 15 October 2019 15:02 UTC

Return-Path: <ietf.dmytro@shytyi.net>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 508A1120802 for <v6ops@ietfa.amsl.com>; Tue, 15 Oct 2019 08:02:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=shytyi.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Hl6cWh4O32da for <v6ops@ietfa.amsl.com>; Tue, 15 Oct 2019 08:02:17 -0700 (PDT)
Received: from sender11-of-o52.zoho.eu (sender-of-o52.zoho.eu [31.186.226.248]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AD47B12010F for <v6ops@ietf.org>; Tue, 15 Oct 2019 08:02:15 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1571151730; cv=none; d=zohomail.eu; s=zohoarc; b=Ch3JpOUAfRYj5VzQ5+JX99YFrIXdeS+oduJAZetlnFMqMQ7CsnBRpGX+QVCh0a0+01R4cJCdPY8R9LPzv282xpEJAq7884O7n0bTvb85idqPTctcUsr36dXXzEKhCJOV9yjoLf3/w+xFyMwVmgVM8A+40vTbAVHKAAWdMExD3CY=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.eu; s=zohoarc; t=1571151730; h=Content-Type:Cc:Date:From:In-Reply-To:MIME-Version:Message-ID:References:Subject:To:ARC-Authentication-Results; bh=MEX358J+OtrTjozt5ryp1n43bUmM9Kp8QwrtyHNoGCg=; b=ftOWr8y/hfJ/G8KrXIlbRdSxwArsiREoXOePjhR2hhhJqXliOaK5560GYtxpFYr/5ZmozVTvQMmUsB+bocFu84uObJKOPTZ2wNEFDZUft5KzABq8MwcbF+DE/iGghBByxf12/NPJX/6EIa3p7Ud75dNYKq5KI6EyEqd2eLlVefo=
ARC-Authentication-Results: i=1; mx.zohomail.eu; dkim=pass header.i=shytyi.net; spf=pass smtp.mailfrom=ietf.dmytro@shytyi.net; dmarc=pass header.from=<ietf.dmytro@shytyi.net> header.from=<ietf.dmytro@shytyi.net>
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; t=1571151730; s=hs; d=shytyi.net; i=ietf.dmytro@shytyi.net; h=Date:From:To:Cc:Message-Id:In-Reply-To:References:Subject:MIME-Version:Content-Type; l=3984; bh=MEX358J+OtrTjozt5ryp1n43bUmM9Kp8QwrtyHNoGCg=; b=CKRXBSifhbAoJma0Pw6d3fMbNCQh/n8i1M+fVez1kABnYWwglWbtr6wUSTMkKtn0 jjJsFGSBcHUkTpANr0nDNNOrptvFasPFy1Tj8kSCln42kspwimCp4Ijp5ZnjTsVmLqa 7uonuRinmZ6wdKdc1v20IAG1wbAAGas3huYhHWrg=
Received: from sender.zoho.eu (172.26.23.31 [172.26.23.31]) by mx.zoho.eu with SMTPS id 1571151730215340.3932878234301; Tue, 15 Oct 2019 17:02:10 +0200 (CEST)
Received: from mail.zoho.eu by mx.zoho.eu with SMTP id 1571151730115605.9374954758887; Tue, 15 Oct 2019 17:02:10 +0200 (CEST)
Date: Tue, 15 Oct 2019 17:02:10 +0200
From: Dmytro Shytyi <ietf.dmytro@shytyi.net>
To: Gert Doering <gert@space.net>
Cc: Jen Linkova <furry13@gmail.com>, v6ops list <v6ops@ietf.org>
Message-Id: <16dcff0d5c1.ccf1d708118262.791262979954754844@shytyi.net>
In-Reply-To: <20191015081553.GO55186@Space.Net>
References: <157110985111.24757.5250925329628210289.idtracker@ietfa.amsl.com> <CAO42Z2wFHVwUG+P8fhFqCJg9X4BN0JLooCtKjiQ8LsxzxKsCDQ@mail.gmail.com> <CAFU7BATLc8dF--hMhEoJj0n4bKD_MEt_BVbbEmGFp_hkrnaPqw@mail.gmail.com> <20191015081553.GO55186@Space.Net>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_330810_1609086823.1571151730114"
X-Priority: Medium
User-Agent: Zoho Mail
X-Mailer: Zoho Mail
X-ZohoMailClient: External
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/7zCqMX1oYErZdRZI93uHGaAeReU>
Subject: Re: [v6ops] Default IPv6 Local Only Addressing for Non-Internet Devices (Fwd: New Version Notification for draft-smith-v6ops-local-only-addressing-00.txt)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Oct 2019 15:02:21 -0000

Hello,



>From the point when device is connected to the internet it becomes a Node that could be reached outside by external users.

The firmware of such devices is updated not that frequenly. It could be dangerous.
>From the point I put my device in DMZ in few moments i see in the log the "Access denied via ssh for user root".

Thus, I think, it is an important thing the authors of the draft highlight.
______________
Dmytro SHYTYI


---- On Tue, 15 Oct 2019 10:15:53 +0200 Gert Doering <gert@space.net> wrote ----


Hi, 
 
On Tue, Oct 15, 2019 at 07:11:00PM +1100, Jen Linkova wrote: 
> The draft says '...when it is clear to a device manufacturer that a 
> device should be isolated from the Internet by default..' 
 
I'd say that most devices built by manufacturers today SHOULD be 
isolated from the Internet...  but I'm afraid that *manufacturers* 
are never going to agree that their shiny new toys are not mature 
enough... 
 
Gert Doering 
 -- NetMaster 
-- 
have you enabled IPv6 on something today...? 
 
SpaceNet AG                      Vorstand: Sebastian v. Bomhard, Michael Emmer 
Joseph-Dollinger-Bogen 14        Aufsichtsratsvors.: A. Grundner-Culemann 
D-80807 Muenchen                 HRB: 136055 (AG Muenchen) 
Tel: +49 (0)89/32356-444         USt-IdNr.: DE813185279 
 
_______________________________________________ 
v6ops mailing list 
mailto:v6ops@ietf.org 
https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email