https://bugzilla.wikimedia.org/show_bug.cgi?id=56252
Web browser: ---
Bug ID: 56252
Summary: IPv6 range blocks should be limited to /48s, not /64s
Product: MediaWiki
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: Unprioritized
Component: User blocking
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected], [email protected],
[email protected]
Classification: Unclassified
Mobile Platform: ---
IPv4 range blocks are limited to a /16 - i.e. up to 2^16 == 64k nominal
customer addresses. This was picked intentionally to reduce the damage
potentially caused by an erroneous block, following the attempted application
of a /0 block(!). It's a balance between too large and too little, and there
are NAT issues with some ISPs, but it's worked well enough.
Following the same logic, given that most(ish) customers are being granted a
/64, MW should limit IPv6 blocks to /(128-64-16) = /48s. However, IPv6 range
blocks are currently allowed for up to /32s, which allows for some very
considerable collateral damage.
--
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
_______________________________________________
Wikibugs-l mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
