IETF Logo Mail Archive

I-D ACTION:draft-jabley-ipv6-rh0-is-evil-00.txt

Jeroen Massar <jeroen@unfix.org> Mon, 07 May 2007 23:04 UTC

Return-path: <ipv6-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HlCFv-0007We-3g; Mon, 07 May 2007 19:04:35 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HlCFs-0007WR-S3 for ipv6@ietf.org; Mon, 07 May 2007 19:04:32 -0400
Received: from purgatory.unfix.org ([2001:7b8:20d:0:290:27ff:fe24:c19f]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1HlCFs-0000Oj-EH for ipv6@ietf.org; Mon, 07 May 2007 19:04:32 -0400
Received: from [IPv6:2001:770:100:9e::2] (cl-159.dub-01.ie.sixxs.net [IPv6:2001:770:100:9e::2]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: jeroen) by purgatory.unfix.org (Postfix) with ESMTP id 5A381140C2D3; Tue, 8 May 2007 01:04:31 +0200 (CEST)
Message-ID: <463FB07C.1010800@spaghetti.zurich.ibm.com>
Date: Tue, 08 May 2007 00:04:28 +0100
From: Jeroen Massar <jeroen@unfix.org>
Organization: Unfix
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.3) Gecko/20070326 Thunderbird/2.0.0.0 Mnenhy/0.7.5.666
MIME-Version: 1.0
To: Joe Abley <jabley@ca.afilias.info>
X-Enigmail-Version: 0.95.0
OpenPGP: id=333E7C23
X-Virus-Scanned: ClamAV 0.90.2/3217/Mon May 7 20:01:19 2007 on purgatory.unfix.org
X-Virus-Status: Clean
X-Spam-Score: -2.8 (--)
X-Scan-Signature: 7aafa0432175920a4b3e118e16c5cb64
Cc: IETF IPv6 Mailing List <ipv6@ietf.org>, IPv6 Ops list <ipv6-ops@lists.cluenet.de>
Subject: I-D ACTION:draft-jabley-ipv6-rh0-is-evil-00.txt
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "IP Version 6 Working Group \(ipv6\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============1025804784=="
Errors-To: ipv6-bounces@ietf.org

See below.

Very short though.

I personally would rather see a "MUST drop packets containing RH0".

Greets,
 Jeroen

--

A New Internet-Draft is available from the on-line Internet-Drafts
directories.


	Title		: Deprecation of Type 0 Routing Headers in IPv6
	Author(s)	: J. Abley
	Filename	: draft-jabley-ipv6-rh0-is-evil-00.txt
	Pages		: 13
	Date		: 2007-5-7
	
   The functionality provided by IPv6's Type 0 Routing Header can be
   exploited in order to perform remote network discovery, to bypass
   firewalls and to achieve packet amplification for the purposes of
   generating denial-of-service traffic.  This document updates the IPv6
   specification to deprecate the use of IPv6 Type 0 Routing Headers, in
   the light of these security concerns.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-jabley-ipv6-rh0-is-evil-00.txt



--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email