On Fri, May 26, 2023 at 8:38 AM Fernando Gont <[email protected]> wrote: > > Hi, Warren, > > On 26/5/23 11:03, Warren Kumari wrote: > > > > > > > On Thu, May 25, 2023 at 11:13 PM, Brian E Carpenter > > <[email protected] <mailto:[email protected]>> wrote: > > > [....] > > > > A well-implemented host will not be troubled by unkown extension > > headers or options. > > > > > > Indeed. However, not all hosts are well-implemented. > > Indeed. Datapoint: > https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=IPv6+extension+header > > Smarter searching/keywords will at least double the results.
Uh, several of those are bugs in Cisco routers not host implementations. In any case, this is hardly a quantitative measurement of quality in hosts. I suggest you look at netdev list of Linux, the world's most deployed OS, when security issues are found, they are addressed quickly. Consumer devices are updated regularly, at least faster than routers are typically updated, and at least an order of magnitude faster than it takes to IETF to publish an RFC. Tom > > > -- > Fernando Gont > e-mail: [email protected] > PGP Fingerprint: 7F7F 686D 8AC9 3319 EEAD C1C8 D1D5 4B94 E301 6F01 > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > [email protected] > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > -------------------------------------------------------------------- _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
