I tried to roll out ipv6 when I was sysadmin for a small ISP. ARIN gave me a /32 block with no fuss. I started handing them out only to discover most routers at the time couldn’t use them. Not much has changed. No one offers them and I just turned it off at my present job. None of my windows machine have the ipv6 stack enabled.
deleted by creator
“There but for the grace of god go thee.”
Or, to be less poetic, “don’t get cocky”.
Hacks can happen to anyone. Better lessons to learn is “don’t enable or install what you don’t need” and “keep machines you don’t trust off your local network”
My LAN has ipv6 disabled. So there.
I updated Windows so hard Linux popped out.
And it’s Arch, by the way.
It sure is 😜
Well, not ALL Windows machines…
“Systems are not affected if IPv6 is disabled on the target machine.”
I can’t remember the last time I saw an IPv6 machine…
My ISP enabled native IPv6 for me a few months back. It’s pretty great. I don’t have any windows machines, but I doubt my wife has disabled it on hers.
Anyway, our router is set up to drop incoming IPv6 traffic by default, sanely enough.
IPv6 is enabled by default on windows. Additionally, MS does no testing against machines with ipv6 turned off. People that go through the effort of turning it off may run into problems.
Where I work, everything is on IPv6. Both the infrastructure for the software services that we run, and our own internal corporate network.
My ISP also provides publicly routable IPv6 prefixes over DHCP. Any layman in my city with this ISP will be on IPv6 by default.
I also use IPv6 for my LAN.
Like, it’s just kind of the default in my neck of the woods…
I have two different ISPs offering gigabit fiber to the home, neither offers IPv6 at all. One of thes years I’ll tunnel an IPv6 prefix or two onto my network to actually get some real world experience with…
ISPs nowadays tend to be either having offered 6 for years or never offered it. Not much middle ground
That’s strange. Mine dual routes. So we get both. I don’t know they generally tell you the ipv6 unless you ask though as most internal networks are still using primarily ipv4
It is on by default in Windows… More likely people have routers with it disabled.
Definitely on by default on my laptop
And disabling it fucks with Windows AD.
My entire network runs IPv6. I don’t have any windows machines though.
It’s on by default with Win10 at least.
I disable it on all machines I build. And use GP to ensure it stays disabled.
Same, ain’t nobody got time to memorize IPv6 addresses! Lmao
There’s just no need for it on small networks. Just another thing running that can go wrong (as it did here).
It also contributes to increased troubleshooting when networking is acting funny, because now you have 2 stacks to consider.
deleted by creator
Dude 10-Base2 won, get over it!
Nah, bus with terminators is better.
Amateurs, not using null modem db9 serial
IPv6 huh? There are dozens of us!
Yay, new Xbox jailbreak method, can’t wait for new modded warfare videos about it
Serious question - I haven’t touched my Xbox one for about 4 years , it wasn’t powered and wasn’t connected to the internet - I would love to jailbreak it and run Linux on it. Can it be done?
About Linux, it’s not yet feasible, probably soon, right now Xbox one/series jailbreak scene is only making first steps with dumping of games and launching roms and emulators without dev mode
This would presumably mainly be an issue for computers open to the internet. So not so much for home PCs, unless the router’s firewall is opened up.
For a professional sysadmin’s home network? Maybe. For the average Joe who probably has their 12-year-old toaster still connected to their wifi? I wouldn’t bank on it.
I’ve not read the CVE but assuming it works on any IPv6 address including the privacy extensions addresses, it’s a problem. Depending on what most routers do in terms of IPv6 firewalling.
My opinion is, IPv6 firewalls should, by default, offer similar levels of security to NAT. That is, no unsolicited incoming connections but allow outgoing ones freely.
In my experience, it’s a bit hit-and-miss whether they do or not.
Now, if this works on privacy extension addresses, it’s a problem because the IPv6 address could be harvested from outgoing connections and then attacked. If not, then scanning the IPv6 space is extremely hard and by default addresses are assigned randomly inside the /64 most people have assigned by their ISP means that the address space just within your own LAN is huge to scan.
If it doesn’t work on privacy extension IPs, I would say the risk is very low, since the main IPv6 address is generally not exposed and would be very hard to find by chance.
Here’s the big caveat, though. If these packets can be crafted as part of a response to an active outgoing TCP circuit/session. Then all bets are off. Because a popular web server could be hacked, adjusted to insert these packets on existing circuits/sessions in the normal response from the web server. Meaning, this could be exploited simply by visiting a website.
Harvesting IP addresses shouldn’t be a problem, since the firewall shouldn’t allow packets from a peer you haven’t talked to first. But true, if you can be attacked in response by a server you’re connecting to that would be bad.
What about torrenting through a VPN with IPv6? Would that make you vulnerable to this exploit?
I think it depends on all the caveats I mentioned. If it could have worked with an outgoing connection, then someone with a bad client could execute it for sure. The VPN wouldn’t protect you.
IPv6 firewalls should, by default, offer similar levels of security to NAT
I think you’re probably right. We had decades of security experts saying that NAT is not a firewall and everyone on the planet treated it like one anyway. Now we’re overexposed for a no-NAT IPV6 internet.
😏🐧
Just say you run Arch and move on.
I run Arch and move on.
Now THAT’S a story I can FEEL. Thank you.
Well, it’s not like you lost a pen, now, is it?
Edit: for anyone who is lost here, enjoy
Is it a Pilot G-2? 0.7mm?
btw.
I disabled ipv6 long ago and never moved. Not even blinked.
Lies, you never move!
Mobility scooter. Duh.
I ran Arch and moved on
I fought the law and the law won.
You run Arch and move on.
(Am I doing this right?)
Still waiting for a distro named “Arch btw”
People always talk about Arch. I wonder what people think of other oses and the people who run them lol. Like I’m a bearded Debian user (closer to the look of the Dilbert comic unix guy).
I just like my build working. What’s wrong with that?
So it took a little while before I could run stable diffusion, I can now!
I think those are really the only two options when it comes to Linux (that’s why I main Windows 10). Hacker man or Dilbert.
Well, I’d like to think I’m just a normal looking dude who blends in in a crowd. I just use Debian ‘cause I got sick of Windows’ shit a long time ago, like, back when telemetry was introduced in Windows XP. That was the first sign of things to come. When we would start losing control of our own OS and computers and losing privacy as well. I shouldn’t even notice the OS when I do normal computer shit, and I want to keep it that way. Those who are old enough to have grown up with PCs in the 90s get what I’m saying. We had control.
I wish I could find something to help me convert my dell laptop into a Debian device. It would be all sorts of fun.
Ive had luck with puppy on older laptops. I have one running on a 2008 machine. Works ok.
deleted by creator
Ah man, you toughed it out clear into XP? Win2k was the last version I ever ran here. That whole shit of “oh you inserted a USB drive, please reboot” really got on my nerves. Plus trying to write code and having Windows crash once a week.
I haven’t seen a Windows BSOD in a long time on any of my systems…
having Windows crash once a week
Several times per day sometimes if you came from the Win9x line like us normies had to use and not NT.
I thought he was saying he’s sexually attracted to punguins…
🐧🌿 (♏)
🌀🐧
🇸🐧
😀🚬
Just say you run Arch and move on.
You run Arch and move on.
deleted by creator
Cachy me outside. I’ll run arch over you.
I run Arch and since then moved on.
If Linux is so great, then explain why I can’t even install this latest security patch for Windows on my Tumbleweed??
You need to sudo zypper install win_patch
Great, it worked!
But now I have ads on my desktop, tiler, and all the menues feature ‘sponsored’ content instead of my shit.That’s a feature!
spoiler
An anti-feature, thanks proprietary software!
I like Linux, but it can have security issues just as well.
Sure can. Just more eyeballs on it and 3rd party eyeballs.
Not every exploit is discovered minutes to hours after a git push. Some go unnoticed for years.
Hah! Joke’s on you. I accidentally restarted my PC and updated it without wanting to.
Linux time?
Linux always
A working clock is always right!
Yeah? Well I was playing a game and it rebooted in the middle of a boss fight!
I was mid-proposal. She said, “Yes, as long as this call doesn’t e…” Thanks a lot, Microsoft!
i was using it to control the robot arms to operate my patient. at least its secure now!
Tell me you didnt take a look at your windows update settings without saying so.
Mine restarted while I was watching a movie.
Thanks Windows.
I just updated and now my audio sounds like shit.
That’s pretty odd. Did you try turning it off and on again?
One restart post-update restarts changed it and helped, but something was still off. Took me like 30 minutes but it looks like my nvidia HDMI audio output got reset to a really low 16 bit sample rate. Got that set back to a decent 24 bit and its closer, but something is still off. I don’t think I had any settings/levels/enchanments.
16 bit audio is normal like 320kbps mp3 and not low bitrate
Sounds like windows changed your audio driver. I’d download the most recent audio driver available through nvidia, then uninstall your current audio driver in device manager and manually install nvidias.
Is this for Windows 11?
My windows XP laptop is good right?
What about Windows 3.1!?
deleted by creator
Does 3.1 even go online?
Winsock baby.
modem noises
Pshhh “zoomers” amiright?!
Eh, they’re alright. They had to deal with more bullshit than I ever had to in high school.
They had to deal with the daily threat that a school shooting could be their school. All I had to deal with was teenage girls having a war over who was hotter. Backstreet Boys, or N-Sync.
Which to be fair, if you said the wrong one to a teenage girl in the 90s, she’d be likely to flip out on you. Still though, they wouldn’t pull a gun!
I’m honestly surprised that the closest we ever got to a parody boy band was Justin Timberlake singing Dick in a Box with Lonely Island. Seems like SOMEBODY should have made a parody band! Weird Al can’t do EVERYTHING, ok???
New Kids on the Block you millennial.
You can equate your highschool experience to a war between boy band favorites.
Sounds like you had a good time in high school.
They had to deal with the daily threat that a school shooting could be their school.
What kinda hellscape country is that?
Oh wait. I know this one.
Zoomers are fine, just making fun of the concept of young people thinking Windows 3.1 couldn’t connect to the internet. America Online, bitch. A/S/L? Also Zi could type my friend’s phone # into Doom and it’d call his modem and we could play each other
3.11 goes online
With workgroups.
With or without, it’s a personal choice
Fuckin DOS could go online.
Our windows XP laptop
Can’t tell if you’re russian, or room mates.
Could also be a joke on how there was a single XP serial number used by nearly everyone that got it from, uhh, non-official sources. FCKGW FTW.
Just anyone with a windows xp machine really
Why would you make it accessible to the world?
In this case? Research, but you are correct in that it’s incredibly unlikely that someone today has their computer directly connected to the internet without a router or something preventing any incoming connection
People rely on IPv4 NAT to be a “firewall” and it drives me nuts
They own the botnet.
Switch to Linux, be done with all of this Microsoft software nonsense
not that easy if you play games unfortunately
I used to agree with this statement, but I’m no longer that sure.
I built a new PC a week ago, installed windows first then Linux. The idea was that I needed Windows for gaming.
Thought I’d try proton + Steam, regardless, just to see how it stacks up.
No performance difference. HDR works through gamescope. The window manager of the DE isn’t insane and I can alt tab around my OS without problem.
Pretty good stuff. Still have windows for work and Valorant, but otherwise I play all my games on Linux these days. The only part that’s lacking, in my opinion, is hot plugging controllers. Annoying that that doesn’t work.
What graphics and processor are you using?
For graphics an RX 7900 XTX, and for CPU a Ryzen 9 7900X.
Actually it is 100% that simple, proton has fixed gaming on Linux.
It doesn’t work for a few rare games that install a rootkit on your Windows PC, but that’s already silly and irresponsible of you to allow a game to do anyway, in my opinion.
Nearly all the games i play run worse on linux than windows. Counterstrike, the finals, vrising. Im sure at least one of them dont have rootkit installed. Even got glorious egg proton profiles and still no luck.
Counterstrike 2 is native to Linux, doesn’t use proton so should have 0 preforman impact
Ill have to test counter strike 2 later today and see if its still runs poorly cause it could have been due to it being recently released when i tested CS2 out.
Though just last night i was testing out the Finals and i noticed that the grqphics were significantly different from windows. In windows i had their polished texture and effects but in linux it was permanently foggy and the wall textures were super bad with shitty shadows.
I tried replicating those textures and settings on windows but i wasnt able to. Im beginning to think the game is not using my graphics card.
So in short; do you have any experience in this kind of issue with the graphics?
I’m not running my computer with an IPv6 address. Only my modem has an IPv6 address. Does that mean I’m not affected?
I’ll make sure to updats either way though.
