Re: IPv6 in Debian

To: debian-release@lists.debian.org
Cc: Tomas Pospisek <tpo@sourcepole.ch>
Subject: Re: IPv6 in Debian
From: Mike Bird <mgb-debian@yosemite.net>
Date: Mon, 30 Jul 2007 11:26:20 -0700
Message-id: <[🔎] 200707301126.21024.mgb-debian@yosemite.net>
In-reply-to: <[🔎] Pine.LNX.4.64.0707292317430.4558@localhost>
References: <Pine.LNX.4.64.0707292206060.4120@localhost> <20070729205221.GF16638@ftbfs.de> <[🔎] Pine.LNX.4.64.0707292317430.4558@localhost>

I would add only one point to Tomas Pospisek's excellent
analysis.  Without diligent precautions, IPv6 is horribly
insecure.  You thought your firewall protected you, but
now "apt-get dist-upgrade" will open your protected apps
to the outside world.

By all means make IPv6 easy to use if you wish, but never
never never enable IPv6 by default.

--Mike Bird

[ tpo@sourcepole.ch cc per request ]

Reply to:

Follow-Ups:
- Re: IPv6 in Debian
  - From: Stephen Gran <sgran@debian.org>
- Re: IPv6 in Debian
  - From: Bastian Blank <waldi@debian.org>

References:
- Re: IPv6 in Debian
  - From: Tomas Pospisek <tpo@sourcepole.ch>

Prev by Date: Re: IPv6 in Debian
Next by Date: Re: Please ensure SVGATextMode < 1.9-18 does not enter the distro for amd64
Previous by thread: Re: IPv6 in Debian
Next by thread: Re: IPv6 in Debian
Index(es):
- Date
- Thread