IPv6 nodeinfo default behaviour
Loganaden Velvindron
logan at elandsys.com
Sun Jul 20 09:04:14 UTC 2014
Hi guys,
OpenBSD recently removed support for RFC 4620 from their kernel completely.
The default value is 3 in FreeBSD.
According to the RFC:
Security Considerations
This protocol shares the security issues of ICMPv6 that are
documented in the "Security Considerations" section of [5].
This protocol has the potential of revealing information useful to a
would-be attacker. An implementation of this protocol MUST have a
default configuration that refuses to answer queries from global-
scope [3] addresses.
I suggest that we switch to 0 by default to be more RFC compliant.
Before I send the patch, I would like to get feedback.
Kind regards,
//Logan
C-x-C-c
More information about the freebsd-net
mailing list