From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-ww0-f47.google.com (mail-ww0-f47.google.com [74.125.82.47]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority" (verified OK)) by huchra.bufferbloat.net (Postfix) with ESMTPS id 56C18200832 for ; Fri, 2 Mar 2012 08:51:52 -0800 (PST) Received: by wgbdt13 with SMTP id dt13so1434820wgb.28 for ; Fri, 02 Mar 2012 08:51:50 -0800 (PST) Received-SPF: pass (google.com: domain of dave.taht@gmail.com designates 10.180.107.99 as permitted sender) client-ip=10.180.107.99; Authentication-Results: mr.google.com; spf=pass (google.com: domain of dave.taht@gmail.com designates 10.180.107.99 as permitted sender) smtp.mail=dave.taht@gmail.com; dkim=pass header.i=dave.taht@gmail.com Received: from mr.google.com ([10.180.107.99]) by 10.180.107.99 with SMTP id hb3mr7137510wib.5.1330707110605 (num_hops = 1); Fri, 02 Mar 2012 08:51:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=x9+zG9YR7ImnbiVFKVEPOp9BaFrViKYk49etBB8qMiI=; b=dqBLPdKQ1BCRs3yNdeVHrhvPRiVa/ftJ2akjpmT/TPv3EYPFmdWEtbq8HHVKNSOeBo COFw7Bpxmz5FhJhtmnnd0VKdsHyeVBRxMmY4HZwXUkW4TtdQcYeFyqDA1x/JUbRluTrQ WUPEugO30EYPbGL1tfHe0qiQfysZK/s1xf5/uairN5D4daMJ3pNkdQ/xu91XsAxzpU4l +g5MGqF1oIrDB9Z4XQQ29m7zXCFxpSsO53fIq5L4z9m2DV0DiI41V0aOLyEUNEVsOp0M bYxVSJwaregNKXoiGupoa6q7xCT/YIF31sXUEMRLcSeCBjaXHl62xqgPEYAFhoM9XkH+ SO7A== MIME-Version: 1.0 Received: by 10.180.107.99 with SMTP id hb3mr5718730wib.5.1330707110515; Fri, 02 Mar 2012 08:51:50 -0800 (PST) Received: by 10.223.151.8 with HTTP; Fri, 2 Mar 2012 08:51:50 -0800 (PST) In-Reply-To: References: <1E158A98-D7F5-489F-89B6-B1673FBB8E84@intermapper.com> Date: Fri, 2 Mar 2012 08:51:50 -0800 Message-ID: From: Dave Taht To: Richard Brown Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: "" Subject: Re: [Cerowrt-devel] CeroWrt port numbering X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Mar 2012 16:51:52 -0000 On Fri, Mar 2, 2012 at 8:26 AM, Dave Taht wrote: >>> Privacy advocates are saying that the "easy way" to create a global IPv= 6 address is bad: it's too easy to plop the MAC address in the lower 64 bit= s of your address, and then the bad guys can use that as another (really po= werful) tracking identifier. This is clearly not a CeroWrt-specific issue, = and it's actively in discussion. (See, for example Barrera et al, in the Us= enix Vol 36, Number 1, https://www.usenix.org/system/files/login/articles/1= 05438-Barrera.pdf ) >> >> This debate has been going on for a decade. >> >> I would like all those trying to make ipv6 even harder for mere >> mortals to use to go off and work on ipv7, hip, and the like. >> >> DNS naming has been hopelessly screwed up as it is, and while I'm a >> big privacy advocate, I'd like ip addresses to be mapped to DNS names >> and I figure that that will bug that crowd, too. > > My position on this is considerably more nuanced than I allude to > above, but I lack the time today to go into it in detail. > > briefly. > > IPv6's one big advantage is restoring end to end connectivity to the > internet, this means that ip addresses do 'leak'. > > However, compared to all the other information that is tracked > nowadays leaking that seems rather trivial, and having local > connectivity that 'just works' would be nice to have compared to what > we have nowadays. For thought-food, why should making a skype call to > someone else in your office require a round trip through the internet? > > From a privacy standpoint there is the existing difference between the > 'us' and 'them' views in bind, the plan has been > to publish local ipv6 addresses in the 'us' view, and optionally in > the them (public) view. > > the mdns whatever.local convention also applies to ipv6, and happens > to work if you have the privacy extensions enabled on your machine, > but needs a hook to talk to the local dns server that is standardized > somehow.... > > naming, privacy, and ipv6 are ratholes.... > > gotta go and btw, I happen to like the idea of hip http://infrahip.hiit.fi/ and have been meaning to package it up and make it 'just work' for ages. The former seems straightforward, the latter.... also of interest are ipv6 nat (patches being floated around now), ccnx (already packaged), shim6, lisp, mobile-ipv6, etc.... but ENOTIME on my part. >>> >> >> >> >> -- >> Dave T=E4ht >> SKYPE: davetaht >> US Tel: 1-239-829-5608 >> http://www.bufferbloat.net > > > > -- > Dave T=E4ht > SKYPE: davetaht > US Tel: 1-239-829-5608 > http://www.bufferbloat.net --=20 Dave T=E4ht SKYPE: davetaht US Tel: 1-239-829-5608 http://www.bufferbloat.net