played with ipv6 yet?

Discussion in 'all things UNIX' started by katio, Feb 5, 2011.

Thread Status:
Not open for further replies.
  1. katio

    katio Guest

    You can "install" IPv6 and it only takes a few seconds.

    here's how on ubuntu maverick:
    Code:
    sudo apt-get install gogoc
    Yes, that's it!

    What to do now?
    www.whatismyipv6.net
    http://ipv6.google.com/
    it looks like non US can use netflix:
    http://ipv6.netflix.com/

    more ipv6 sites: http://www.sixxs.net/wiki/IPv6_Enabled_Websites

    other useful tools:
    $ ping6
    $ nmap -6

    and lots of news, info and "more":
    http://www.reddit.com/r/ipv6

    WARNING
    Enabling ipv6 will open your system directly to the Internet AND bypass iptables!
    Don't run services you don't want to expose to the world or protect them with ip6tables.
    The usual privacy and security pitfalls of tunnelling apply too.

    If you have other useful and interesting resources please share and I'll add them to the list.
     
  2. tlu

    tlu Guest

    katio,

    I haven't tried ipv6 yet. However, I stumbled upon an article in the excellent German computer magazine c't (it's not yet available on their website) regarding privacy considerations which affect mainly smartphone users but generally also other operating systems. The Privacy Extensions which solve these privacy concerns can not be enabled in smartphones, are enabled by default in Windows XP/Vista/7 (but not in Server 2003 and 2008,2008R2) and have to be enabled manually for the various Linux distros and for Mac OS X.

    Here's how according to c't:

    Opensuse 11.3:
    A system variable IPV6_PRIVACY is available but enabling it with the sysconfig editor in Yast has no effect. That's why you have to add a line in /etc/sysctl.conf like

    net.ipv6.conf.IF.use_tempaddr = 2

    and replace IF with the name of your interface like eth0 or wlan0. After a restart Opensuse will use temporary ipv6 addresses.

    Ubuntu 10.10:
    Same as Opensuse but you have to add the following line before the one above:

    net.ipv6.conf.default.use_tempaddr = 2
     
  3. katio

    katio Guest

    What about a rooted Android/jailbroken iOS device?

    This is mainly regarding IPv6 addresses being computed based on the local MAC address. That would not only make it static but bound to your specific hardware which may be traced back to you and so on.

    This problem doesn't occur with Freenet6/gogo6, they assign you a dynamic IPv6 address with only the last octet changing (randomly it seems) whenever you reconnect. Though they also allow you to sign up on their website to get a static IP.
     
  4. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
  5. katio

    katio Guest

    Thank you searching___
    I missed your thread but I've seen the ipv6 insecurity 27C3 talk by Marc Heuse and that was quite an eye opener.

    PS: As long as the thread stays neat and short like that I'll not compile a list in the OP as promised (yeah, lazy me). Hope you're OK with that?


    EDIT:
    http://www.focus.com/images/view/49504/
    see the red geolocation bubble?

    Now at least I know we won't be stuck with CGN forever because "they" certainly want that feature. (With "they" I mean government agencies and the big ad/cloud/service providers, i.e. those who "own" the web for the better or worse.)
     
    Last edited by a moderator: Feb 8, 2011
Thread Status:
Not open for further replies.