I've been on a soapbox for the last 3 years telling people that tell me "We're not running IPv6" that they are and they don't realize it. Essentially your systems in their default state are trying to pull addresses but nobody is offering them. The moment I connect to your network and start sending Router Advertisements (RA) your systems will accept them will be part of my IPv6 network. As you can imagine at this point they will be susceptible to any IPv6 exploits. I've discovered a few of my own, but here is a really nice article about one that went public today.
SLAAC IPv6 Attack
Moral of the story is InfoSec Rule 1.a(1) If you're not using a service disable it.
About Me
- Ryan Lindfield
- I live in Tampa, FL with my wonderful wife Desiree and super-dog Logan. I am now independent, working as a technical instructor, author and editor. I also perform network management, troubleshooting, and penetration testing throughout the year.
Subscribe To
Posts
Comments
No comments:
Post a Comment