This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[ipv6-wg] More on IPv6 RA-Guard evasion (IPv6 security)

Next message (by thread): [ipv6-wg] More on IPv6 RA-Guard evasion (IPv6 security)

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Fernando Gont fgont at si6networks.com
Mon Sep 5 05:53:36 CEST 2011

Folks,

A few months ago I had published a couple of IETF Internet-Drafts to
tackle the problem of RA-Guard evasion -- A summary of the problem and
pointers to relevant materials is available at:
http://blog.si6networks.com/2011/09/router-advertisement-guard-ra-guard.html

The two I-Ds are:

* http://tools.ietf.org/id/draft-gont-v6ops-ra-guard-evasion-01.txt
* http://tools.ietf.org/id/draft-gont-6man-nd-extension-headers-01.txt

The former one explains the different attack vectors, and proposes
operational counter-measures. The latter proposes a longer-term solution.

I'm planning to revise these two I-Ds soon, so any
comments/feedback/discussion would be really welcome.

P.S.: In case you haven't, you may want to join the IPv6 Hackers
mailing-list: http://www.si6networks.com/community/mailing-lists.html

Thanks!

Best regards,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont at si6networks.com
web: http://www.si6networks.com

Next message (by thread): [ipv6-wg] More on IPv6 RA-Guard evasion (IPv6 security)

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ ipv6-wg Archives ]