top | item 46310461

(no title)

It's enabled by default, I was mostly talking about being in a lan with active ipv6, imo that's not that common.

discuss

ale42|2 months ago

IMHO you do not need "active" IPv6. Most LANs (unless you have some switch-level filtering that blocks router advertisements from "unauthorized" nodes) can transport such IPv6 packets. Then it just takes being connected to the LAN and being able to send an arbitrary ICMP6 packet (which probably means being root on the attacker machine, not a very high barrier I'd say).

champtar|2 months ago

You need working switch level filtering, many implementations can be bypassed / will never be fixed: https://blog.champtar.fr/VLAN0_LLC_SNAP/

shakna|2 months ago

That's pretty standard where I am. Every Telstra router comes with IPv6 enabled.

immibis|2 months ago

As it should be. If your ISP isn't giving you ipv6, they're not giving you internet access and you should sue for your money back.

BSDobelix|2 months ago

No, you can choose if you want IPv4 or IPv6 or both, at installation time also if you want it in "autoconf-mode"