From owner-freebsd-net@freebsd.org Wed Jun 14 06:14:44 2017 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 73CB2D86DA5 for ; Wed, 14 Jun 2017 06:14:44 +0000 (UTC) (envelope-from rpaulo@me.com) Received: from mr11p00im-asmtp002.me.com (mr11p00im-asmtp002.me.com [17.110.69.253]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4A1097B7DE for ; Wed, 14 Jun 2017 06:14:44 +0000 (UTC) (envelope-from rpaulo@me.com) Received: from process-dkim-sign-daemon.mr11p00im-asmtp002.me.com by mr11p00im-asmtp002.me.com (Oracle Communications Messaging Server 7.0.5.38.0 64bit (built Feb 26 2016)) id <0ORI00200TXC5B00@mr11p00im-asmtp002.me.com> for freebsd-net@freebsd.org; Wed, 14 Jun 2017 05:14:23 +0000 (GMT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=me.com; s=04042017; t=1497417263; bh=yyV6z/6UzquFoUWfdT1r/LhREYXSboTuz0H4Q4Fz9HU=; h=MIME-version:Content-type:Message-id:Subject:From:To:Date; b=HHxxRlrx37VH0bXWrd3PO1lET0Eje0PXniaKPlxW+18pcumd7/+2r9JLeHfmrbL8O /Fd/2fGFSiXOaBL5jPdLr3UI5t8f1iw0OUpXHhAKsnHQBlEtzJzYxYxPkEGClkASgu hckGT4qL11ZrDECTeAz2Ns08NaRGSpQszPnwjlSE6D7Gyhjm6SK/OWpeAzbf25CqDa kLwc3r1M4ifq37nQrw8XeWSBlnf4MKAI+Y0RLRkxg6RB8HKb6IPiVBI6bZKpbEurnb Vc5JB5+Hcv2cv4ZrLyqRb2Em/6krNbBH73LoiYkD/7foAQPHqQcv7ruTx+pXQDK5Al 9kcVbClb8Rzdw== MIME-version: 1.0 Content-transfer-encoding: 8BIT Content-type: text/plain; charset=UTF-8 Received: from icloud.com ([127.0.0.1]) by mr11p00im-asmtp002.me.com (Oracle Communications Messaging Server 7.0.5.38.0 64bit (built Feb 26 2016)) with ESMTPSA id <0ORI00BFRUJXWY10@mr11p00im-asmtp002.me.com>; Wed, 14 Jun 2017 05:14:22 +0000 (GMT) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2017-06-14_01:,, signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 clxscore=1034 suspectscore=0 malwarescore=0 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1701120000 definitions=main-1706140095 Message-id: <1497417261.2220.5.camel@me.com> Subject: Re: Enable IPv6 Privacy Extensions by default From: Rui Paulo To: Garrett Wollman Cc: freebsd-net@freebsd.org Date: Tue, 13 Jun 2017 22:14:21 -0700 In-reply-to: <201706140257.v5E2vRDE029173@hergotha.csail.mit.edu> References: <20170611215904.4612ee41@kalimero.tijl.coosemans.org> <20170612131912.42537b13@kalimero.tijl.coosemans.org> <1497408664.2220.3.camel@me.com> <201706140257.v5E2vRDE029173@hergotha.csail.mit.edu> X-Mailer: Evolution 3.22.6-1 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Jun 2017 06:14:44 -0000 On Tue, 2017-06-13 at 22:57 -0400, Garrett Wollman wrote: > In article <1497408664.2220.3.camel@me.com>, rpaulo@me.com writes: > > > I don't see any reason why we shouldn't have privacy addresses > > enabled > > by default.  In fact, back in 2008 no one voiced their concerns. > > Back in 2008 most people hadn't had their networks fall over as a > result of MLD listener report implosions when a thousand machines > report (via multicast, natch) their eight[1] single-member > solicited-node multicast groups in the space of a few seconds. > > -GAWollman > > [1] Assuming the vendor actually implemented the thing correctly. > Some of us have seen what happens when one machine reports eight > hundred single-member solicited-node multicast groups in the space of > a few milliseconds. Pretty sure these problems have been addressed by now, given the amount of computers, smart phones, tablets, etc. running with privacy extensions enabled. If you still think this is a big problem, then FreeBSD could simply implement CGA . -- Rui Paulo