On 12/3/19 3:52 AM, Tim via users wrote:
On Mon, 2019-12-02 at 13:29 -0500, Robert Moskowitz wrote:
MAC randomization is now the rule for all interfaces which gives DHCP
and other technologies challenges. In this case, IEEE 802.11 was
actively involved in this privacy enhancement.
As with any such advancement, it has its pros and cons.
All I see in that is a badly mismanaged logistical nightmare. In my
opinion it should only be done as a deliberate choice. Within a LAN,
firewall rules will be built on IP and/or MAC, if you want to give
someone some trust above (what should be) the default untrusted level,
you need something consistent to identify the device.
We have part of the networking/firewalling configuration where you can
declare a connection is home, public, untrusted, etc. Randomising
could be a choice in there, or a suitable preselection with some of the
choices (i.e. preselecting no randomising on a trusted home LAN,
preselecting to have randomising on a new or public connection).
I'd hate to be trying to do something somewhere with bad network, and
everytime you lost connection your MAC and IP change.
I'm really not sure what benefit you get from MAC randomising, anyway.
It's only supposed to stay within your local network, who can already
datalyse you in a myriad of ways. Likewise, there's a plethora of things that
datalyse you on the web, your browser is probably the worst software you can
Unfortunately, your MAC addr does not stay local.
First is IPc6 addr construction. Your IP address is now recognized as a
major tracking of activity number.
addr to add to the data collected on the client. More tracking.
There are a lot of documents out there that are looking into how numbers
are being used to track, and in some cases, harm people. Thus the move
to 'break the chain'.
This is not my area. I was involved early on, but for the most part
walked away from the work. Or rather no one was funding me to work on
it once I was RIFed from Verizon. Note that there are a lot of changes
coming out that will alter some fundamental things in the Internet. It
will take time, and money, for this all to flush through.
Perhaps more later. Got to run.
users mailing list -- firstname.lastname@example.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines