[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: simple security
On 3/24/10 1:38 PM, Mark Smith wrote:
By "simple-security" I was referring to the draft's scope, which is for
On Wed, 24 Mar 2010 12:15:49 +0100
Mark Townsley<email@example.com> wrote:
On 3/23/10 3:02 PM, Lee Howard wrote:
The simple-security draft represents the best practice we know of for
securing home networks.
It's not a best-practice, it's a best-guess.
Simple-security is being not being practiced at all on the vast majority
of IPv6 residential connections today.
Is that really the case? What is the current situation with IPv6
firewalls on mainstream OSes like OS X and Vista/Windows 7?
Fully agree that most IPv6-enabled hosts are either running with some
sort of firewall either enabled or at least available.
This Linux desktop is directly attached to the Internet, and I've been
running an IPv6 firewall on it for about 3 or 4 years. The initial
Linux implementation was a basic packet filter, however it became
stateful at least 18 months to 2 years ago.