[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

turning on comcast v6

Subject: turning on comcast v6
From: bicknell at ufp.org (Leo Bicknell)
Date: Sat, 4 Jan 2014 10:10:24 -0600
In-reply-to: <[email protected]>
References: <m2haaihyer.wl%[email protected]> <m21u1jbk7u.wl%[email protected]> <CAHd7N8PHgmeTKRE=exAWLHfWrcAi7=0ikO6fKBpRQBLFg9mOaA@mail.gmail.com> <[email protected]> <[email protected]> <[email protected]> <465966A5F5B867419F604CD3E604C1E55932A915@PRA-DCA-MAIL.pra.ray.com> <CED9A84D.3CFDA%[email protected]> <465966A5F5B867419F604CD3E604C1E55932A93B@PRA-DCA-MAIL.pra.ray.com> <CED9ADE4.3D014%[email protected]> <CAEmG1=phmPYA-vZ+NVXwi=RwwKgzMEo+tG+tMj6BUtadhdB73Q@mail.gmail.com> <CEDF00D7.3DAAC%[email protected]> <[email protected]> <CEE7298F.3E36F%[email protected]> <[email protected]> <CAJvB4tmeBDFv9NUn2aDsUHvnWBGqtjEke3WA1xDSOjVOfengFQ@mail.gmail.com> <CEE7429C.3E501%[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected].! ! com> <[email protected]> <[email protected]>

On Jan 3, 2014, at 7:52 PM, Owen DeLong <owen at delong.com> wrote:

> Well? Sure, 15 years after DHCP attacks first started being a serious problem? I doubt it will take anywhere near 15 years for RA guard on by default to be the norm in switches, etc.

I count over a dozen ethernet switches in my home that do not have DHCP guard.  Indeed, half of them do not have a management interface at all.  Even my "business class cable modem" does not implement DHCP guard on it's integrated switch.

I also don't know of a single device, from any vendor, that turns DHCP guard on by default.  I'd appreciate pointers if there is one.

I know a half dozen people sent some form of "don't do that" when I gave the example of plugging in a "rogue" router with my corporate scenario.  Maybe in a corporate scenario that's plausible, there will be intelligent admins (ha!).  What happens when Joe Home User buys a new Linksys and wants to plug it in to get a firmware update before installing it?  Are we really supposed to expect that every Joe Homeowner understands RA Guard and configures it for their home network?

-- 
       Leo Bicknell - bicknell at ufp.org - CCIE 3440
        PGP keys at http://www.ufp.org/~bicknell/

Follow-Ups:
- turning on comcast v6
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

References:
- turning on comcast v6
  - From: matthew at matthew.at (Matthew Kaufman)
- turning on comcast v6
  - From: dougb at dougbarton.us (Doug Barton)
- turning on comcast v6
  - From: owen at delong.com (Owen DeLong)

Prev by Date: anybody seeing mail problems sending to yahoo.com? (and a yahoo email contact?)
Next by Date: Open source hardware
Previous by thread: turning on comcast v6
Next by thread: turning on comcast v6
Index(es):
- Date
- Thread