It wouldn't neccesarily be that much harder with IPv6 to do a DOS through a flood. It would mean that each attacking machine could be more quickly traced, but remember, the attacking machines were unwitting participants. Those machines were already hacked because of other exploits.
The answer lies in securing the machines themselves. And this means all machines which can connect to the internet. Every application allowed to listen on a port should support TLS and only allow authorized connections. Note, this means configuring each app with a set of trusted certs. Apps meant for public access should be very strong and/or run outside a firewall.
IPSEC is fine for packets out in the wild, but network transparency is kinda moot if someone is authorized to access thier pop server based upon thier CA issued mail cert even if they broke thier pc/phone and borrowed thier bosses and stuck thier cert chip in there.
It's about time! Why should they blame Echelon for reading email or listening to cell phone calls. Anyone can do it without encryption. They should blame executives who discuss sensitive proposal data over open cell phones or unencrypted email. At first, it was the European Parliment blaming the US for pushing key escrow for purposes of industrial espionage. That is so ridiculous, because the escrowed keys certainly wouldn't be held by the US. If they were, who in thier right mind would encrypt competition (with the US) sensitive data with thier escrowed key. Hopfully, France and the rest of the world will begin to see the light. Privacy is a basic human right, and one way to protect it is with encryption. The US respects this right to the extent that it is illegal to wiretap, without a court order, in a criminal investigation. I found it humorous when the ban came on radio scanners which could scan cell phone frequencies. As a kid, I made a little radio with a diode hooked to the water pipes. It seems ridiculous that it would be illegal to turn the tuning knob too far. That is like making a law that you must cover your ears if you hear someone talking softly to someone else. If you don't want anyone else to know something, don't broadcast it to the world (unencrypted).
Slashdot Mirror
It wouldn't neccesarily be that much harder with IPv6 to do a DOS through a flood. It would mean that each attacking machine could be more quickly traced, but remember, the attacking machines were unwitting participants. Those machines were already hacked because of other exploits.
The answer lies in securing the machines themselves. And this means all machines which can connect to the internet. Every application allowed to listen on a port should support TLS and only allow authorized connections. Note, this means configuring each app with a set of trusted certs. Apps meant for public access should be very strong and/or run outside a firewall.
IPSEC is fine for packets out in the wild, but network transparency is kinda moot if someone is authorized to access thier pop server based upon thier CA issued mail cert even if they broke thier pc/phone and borrowed thier bosses and stuck thier cert chip in there.
It's about time! Why should they blame Echelon for reading email or listening to cell phone calls. Anyone can do it without encryption. They should blame executives who discuss sensitive proposal data over open cell phones or unencrypted email. At first, it was the European Parliment blaming the US for pushing key escrow for purposes of industrial espionage. That is so ridiculous, because the escrowed keys certainly wouldn't be held by the US. If they were, who in thier right mind would encrypt competition (with the US) sensitive data with thier escrowed key. Hopfully, France and the rest of the world will begin to see the light. Privacy is a basic human right, and one way to protect it is with encryption. The US respects this right to the extent that it is illegal to wiretap, without a court order, in a criminal investigation. I found it humorous when the ban came on radio scanners which could scan cell phone frequencies. As a kid, I made a little radio with a diode hooked to the water pipes. It seems ridiculous that it would be illegal to turn the tuning knob too far. That is like making a law that you must cover your ears if you hear someone talking softly to someone else. If you don't want anyone else to know something, don't broadcast it to the world (unencrypted).