From: TJ Sent: Thursday, March 03, 2011 9:59 AM To: huabing yu Subject: Re: draft-yhb-6man-ra-privacy-flag-01
Questions: * 2.3(3.1) - Concern over an attacker "forcing" a host to drop it's active privacy addresses? Reply: It is possible, but the threat is not so serious, so don't worry about it. If the privacy address is deprecated, the host can use the other IPv6 addresses, for example, the EUI-64 IPv6 address. * What about OSes that only do randomized IIDs by default ... Should they switch to EUI64 if this bit is set? Reply: No. This flag is only valid to the privacy addresses. * What if this flag disagrees with manual configuration / GPO? Reply: Is your meaning the flag deprecated manually configured IPv6 addresses? I don't understand your meaning. Please describe it in detail.
-------------------------------------------------------------------- IETF IPv6 working group mailing list [email protected] Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
