I do think it might be useful to recommend that DNS servers be configured as to refuse requests to list DNS zones as a means to thwart attackers from looking for IPv6 addresses. But assuming that such listing is disabled, I don't know why listing a host's address in DNS would make that host a more likely target for attack. In other words, why is DNS name probing any more feasible of an attack than IPv6 address probing?
Keith -------------------------------------------------------------------- IETF IPv6 working group mailing list [email protected] Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
