Upvote!
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
qaz@lemmy.world to Programmer Humor@programming.devEnglish · 2 days ago

We don't talk about IPv5

lemmy.world

message-square
190
fedilink
901

We don't talk about IPv5

lemmy.world

qaz@lemmy.world to Programmer Humor@programming.devEnglish · 2 days ago
message-square
190
fedilink
  • Nightwatch Admin@feddit.nl
    link
    fedilink
    arrow-up
    26
    arrow-down
    9
    ·
    2 days ago

    It’s vulnerable af. And I mean really, it’s as bad as Netscalers or Fortigate shit. Like https://www.bleepingcomputer.com/news/security/hackers-abuse-ipv6-networking-feature-to-hijack-software-updates/ or https://www.bleepingcomputer.com/news/security/hackers-abuse-ipv6-networking-feature-to-hijack-software-updates/

    Problem is, yes it’s hard to implement but it’s even a lot harder to get it properly secured. Especially because few people are using it, and not securing it is worse than disabling it.

    • jj4211@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      23 hours ago

      But you could do the same thing with a rogue DHCP server I IPv4… With similar methods to prevent the misbehavior on networks

    • Auli@lemmy.ca
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 day ago

      Don’t see how that is anymore vulnerable then up 4.

    • Lena@gregtech.eu
      link
      fedilink
      English
      arrow-up
      29
      ·
      2 days ago

      Just a heads up, you linked to the same article twice

      • Fuck u/spez@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        33
        ·
        2 days ago

        Clipboards are also hard

      • Nightwatch Admin@feddit.nl
        link
        fedilink
        arrow-up
        6
        ·
        2 days ago

        That’s odd, but truly sorry.

    • NuXCOM_90Percent@lemmy.zip
      link
      fedilink
      arrow-up
      20
      ·
      2 days ago

      And I would consider a detailed argument on why it is more secure to disable it to be a good reason.

      Personally? I consider an IT team who don’t know how to secure an ipv6 enabled network to not be competent. But that is a different conversation.

      • Nightwatch Admin@feddit.nl
        link
        fedilink
        arrow-up
        11
        ·
        2 days ago

        Yeah, I run dual stack without much trouble myself. I believe it is mainly difficult for people because eyeball diagnostics are impossible with 6.

      • TexasDrunk@lemmy.world
        link
        fedilink
        arrow-up
        6
        ·
        2 days ago

        My detailed explanation at my old job is that the dev team was full of idiots who hardcoded ipv4 addresses into their fucking code. Seriously. When we migrated from data center to cloud they had to go patch everything. The CTO wouldn’t do shit about it and the director was just there riding things out until retirement.

      • StarlightDust@lemmy.blahaj.zone
        link
        fedilink
        arrow-up
        1
        ·
        2 days ago

        It has less eyes on it due to it being less popular. It also introduces an extra vector of attack.

        • Auli@lemmy.ca
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 day ago

          It does not have less eyes on and it’s 50% of Google traffic.

          • jj4211@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            7 hours ago

            Think they mean local networks.

            If an IT department carefully curates IPv4 but ignores IPv6, then a rogue actor can set up a parallel IPv6 network largely without being noticed.

            IPv6 can be managed, just that it is a blindside for a lot of these departments.

Programmer Humor@programming.dev

programmer_humor@programming.dev

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !programmer_humor@programming.dev

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

  • Keep content in english
  • No advertisements
  • Posts must be related to programming or programmer topics
Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 1.28K users / day
  • 4.17K users / week
  • 8.29K users / month
  • 20.1K users / 6 months
  • 1 local subscriber
  • 25.4K subscribers
  • 1.53K Posts
  • 51.6K Comments
  • Modlog
  • mods:
  • Feyter@programming.dev
  • adr1an@programming.dev
  • BurningTurtle@programming.dev
  • Pierre-Yves Lapersonne@programming.dev
  • BE: 0.19.6
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org