06 Jun IPv6: Unforeseen Consequences.
Category: Unfiled

You know, Iljitsch van Beijnum posted here today, and it reminded me of a funny thing that keeps coming up if I speak to some people that took my how-to on securing your Mac serious. Iljitsch does a lot of articles on IPv6 over at Ars Technica and he’s written up quite a lot on it (in print too). Check out is website and his books.

For the uninitiated; we use IP numbers on a network as an address. The number space of IPv4 has shown to be too limited for our growth (if you want to read more into this, check this out).
IPv6 is, for the semi-geek, an extremely scary concept because it makes them feel like all their knowledge of networking will become obsolete. The ‘long and complex’ number system and all of it’s features (that are really, really much nicer to use than the old decimal ones once you get around it) are subject to much critique in any IPv6-related Slashdot post. Over and over again, it’s supposed ‘pitfalls’ are exposed. I was extremely surprised to find that when I spoke to some people that followed my how-to (which Iljitsch put on Ars Technica appropriately as “Make your Mac more secure (than you can stand)” ), that when I brought up using IPv6 with IPSec-enabled services is quite secure – more so than conventional IPv4, of course, they pointed me to my how-to, that told them to disable IPv6. I really slapped myself to the forehead when I heard that from more than three people who took it to the heart.

What I suggested is that you disable IPv6 if you don’t use it. IPv6 is pretty cool. It’s not a gaping security hole, but I touched on any hypothetical avenue for attack that you can take away from the default configuration. Who knows, there might be a zero-day exploit out there that does do nasty stuff but breaks if you disable IPv6 (which I strongly doubt – but it’s a quantum universe we live in). Please don’t hesitate to adopt IPv6 if you feel like learning about it. It’s knowledge that you will, no doubt, have to use in the future anyway.

So apparently, IPv6 has some identity issues. We really need to get rid of the negative image. KAME has been doing that well, as well as the “ASCII Star Wars in your terminal” server towel.blinkenlights.nl. However, let’s keep showing people that IPv6 isn’t all that scary, but i
t’s a great step into the future of our communication technologies. For that, a little icon.


Unrelated posts:

    Bricky Shirt

    By no means a replacement of the Cocoia Exploded Settings tee, but I wanted to wear this and I was told others enjoyed it as well. Represent the...

    the Cocoia WWDC shirt

    It's often said that there is great value in having a distinct shirt at WWDC, and while I'm not very preoccupied with that notion myself, I do...

    Redesigning Steam for Mac

    Steam for Mac will be available for download in a week's time. Steam, for the uninitiated, is the world's largest gaming platform, serving in...

    The first Photoshop icon.

    While I was doing some research for one of my upcoming projects today, I found the very first Photoshop icon. It's actually a tiny little photo...

You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses

  1. 1

    Were doing a politic petition in sweden to encourage change to ipv6. is the icon free to use?

  2. 2

    Feel free, astor.

  3. 3

    Thanks a lot! I’ll credit you in my blogpost.


Leave a Reply