Home page logo

nanog logo nanog mailing list archives

Re: AT&T UVERSE Native IPv6, a HOWTO
From: "Ricky Beam" <jfbeam () gmail com>
Date: Mon, 02 Dec 2013 22:24:27 -0500

On Mon, 02 Dec 2013 22:02:39 -0500, Owen DeLong <owen () delong com> wrote:
Not really... First of all, domain or other windows authentication could be used to validate the request.

Most home networks aren't part of a domain. (unless they're using versions beyond "home", they can't)

Second, if it's site-scope multicast, unless both your ISP _AND_ your own router are doing something wrong, it shouldn't get forwarded into your site from outside.

All they have to do is get a single computer inside your network to run their little program. Drive-by download, any number of browser exploits, one idiot user... Go talk to the security crowd about UPnP if you really want one computer to be able to ask another computer to alter it's firewall rules.

(domain policies do actually address this.)

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]