[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: simple security
On Wed, Mar 24, 2010 at 12:15:49PM +0100, Mark Townsley wrote:
> Yes, I know there are still OSes that will be compromised in a matter of
> seconds on the open Internet. These, however, do not run IPv6. With
> IPv6, we are really talking about Vista, Win 7, linux, and macosx. All
> ship with IPv6 firewalls (except linux I suppose)
what about ip6tables?
Other than that, I think that the paragraph below sums up my feelings
for the matter
> "simple-security" is "simple-minded". It is based on a security-model
> that is rapidly becoming obsolete, and comes at the cost of complexity
> in both the RG, the host, and the applications that have to try and work
> despite all the various rules for having their packets dropped.
> - Mark