https://bugzilla.wikimedia.org/show_bug.cgi?id=24294
--- Comment #8 from Carl Austin Bennett <[email protected]> 2011-09-09 03:20:22 UTC --- Hard to know if blocking /80 or /96 makes sense... if /64 is enough to narrow down to one individual router (a LAN subnet) the lower 64 bits seem to typically be either: a) mostly zeroes, with the low word a sequential or arbitrary number identifying an individual machine using just the lower few bits as meaningful data. b) a network card's hardware MAC address or a randomly-selected number. A local network may well be 2001:db8:1234:5678::1 as router with ::2, ::3 and ::4 as the individual computers; in this case a /64 vs. a /125 actually produce the same result as all that's in all those extra bits is a whole lot of zeroes. The most likely options are: a) block one computer (a /128) - weak as the rest of the same LAN retains access b) block one individual subnet (a /64) - usually takes out one router or LAN c) a range block of anything larger (a /32 would likely block a local ISP) -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
