How about https on tcp/443? I doubt they'd block this as many things these days require it (FAFSA comes to mind).
If they don't block it (try a few random banks' homebanking sign-on page to see if you can connect), then use proxytunnel to pass ssh via tcp/443 and you can then portforward to a home proxy server.
Best of all, it's all encrypted and they can see none of it other than the ssh connection to your home server which is encrypted (as would be any https tcp/443 traffic).
Someone could have a brought an infected laptop from home. Of course, if these are life-critical they should be firewalled even from their own "internal" network as extra security precation (as often you can't just go rebooting these types of boxes once a week just because a new patch came out).
But enough tunneled peers to make it worth while and interesting to gather stats from:
Wed Aug 20 23:21:52 2003 315 2001:1818::2e0:81ff:fe03:73c8 34239231/pub/matrix/revolutions_640_dl.mov b _ o a mozilla@example.com ftp 0 * c Wed Aug 20 23:52:53 2003 1216 3ffe:b80:2:2e61::2 25862144/pub/matrix/revolutions_640_dl.mov b _ o a foo@foo.com ftp 0 * i Thu Aug 21 00:05:49 2003 251 2001:1448:0:1a:2d0:b7ff:fe7d:dddc 34239231/pub/matrix/revolutions_640_dl.mov b _ o a -wget@ ftp 0 * c Thu Aug 21 00:58:05 2003 1202 2002:40af:f7e6::40af:f7e6 49152/pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * i Thu Aug 21 01:04:15 2003 11 2002:ccb:ec3e::ccb:ec3e 114688/pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * i Thu Aug 21 02:14:05 2003 451 evila.danbri.org 34239231/pub/matrix/revolutions_640_dl.mov b _ o a pldms@mac.com ftp 0 * c Thu Aug 21 02:51:10 2003 612 2001:8b0:c:1:240:63ff:fecb:fccd 34239231/pub/matrix/revolutions_640_dl.mov b _ o a ftp@ ftp 0 * c Thu Aug 21 03:40:15 2003 256 D5778B68.kabel.telenet.be 34239231/pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * c Thu Aug 21 04:32:41 2003 94 2001:7c8:82:0:260:97ff:fe91:877a 5324800/pub/matrix/revolutions_640_dl.mov b _ o a mozilla@example.com ftp 0 * i Thu Aug 21 06:16:23 2003 1301 2001:718:1802:1001:74df:b1c0:2c2c:5d8c 34239231/pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * c Thu Aug 21 08:37:33 2003 227 A192216.N1.Vanderbilt.Edu 34239231/pub/matrix/revolutions_640_dl.mov b _ o a me@me.com ftp 0 * c Thu Aug 21 12:17:45 2003 13 3ffe:bc0:d7:1:220:78ff:fe04:8775 311296/pub/matrix/revolutions_640_dl.mov b _ o a mozilla@example.com ftp 0 * i
Oh, and Sprintlink has an IPv6 backbone which customers can tunnel to (2 hops from my external router). NTT/Verio is rumored to be turning up native IPv6 in the US as well. Asia and Europe are big IPv6 users (least IP allocations, most population).
Slashdot's 'lameness filter' sucks. I can't even post a snapshot of failed wget session. Anyway: wget http://progressive.warnerbros.com/thematrix/us/med/revolutions_640_dl.mov
And when it fails after 20 times try again using the partial: wget -c http://progressive.warnerbros.com/thematrix/us/med/revolutions_640_dl.mov
Don't have wget on your Windows box? Install Cygwin
I moved 3 years ago and had the druggie who moved in after me at my former address open a credit card with my bank in my name (not too hard, I was born, married, and bought a house in this state). I didn't find out until 6 months later, since they'd never gotten payment (it was opened with the old address and for whatever reason no bills were ever forwarded to me). I got a call at work, from the bank, wondering why I wasn't paying on my credit card. "What credit card, I only have an ATM/Debit card with you?" Found it he'd opened it 2 weeks after I moved, don't know how he got all the info. He tested it for a fill-up at the gas station right down the street, then went to SF and filled up one more time, then bought a $1000 digital camera, and never used the card again.
I took the rest of the day off to get things taken care of (file a police report, call all the places I had major accounts with, write them letters, etc.). Basically nothing came of it, it was marked fraud and removed from my credit report (but would have caused me problems if I'd not known about it and had been trying to buy a car or a house, fortunately I'd already bought both).
Since then I've had another credit card used fraudulently. It's a card I use exclusively for online purchases, nothing else. I was happening to check the balance and saw 3 charges the day before, two in England and one in France - two were expensive travel cruises and one was for a couple hundred dollars worth of sports gear from an online store (all of it booked online). I called my credit card company and told them I had no clue what the purchases were. They put a freeze on the account and none of the transactions went through (even though I'd not have been liable anyway), but that was just dumb luck.
What I really like about that credit card company (MBNA) is that they new offer a feature called "Shop Safe." It allows you to set a maximum amount for a purchase and an expiration date, and then generates a temporary credit card number. I love this idea and I cannot understand why more companies don't do it.
I really think credit card companies should allow you to specify that you won't allow the card to be used for online purchases. I've got 3 cards with photos on them, and that's how I'd have those set: no purchases that are not in person (ban both online and phone purchases). For those purchases I'll generate a random number thru MBNA with a cap set.
Even that wouldn't stop the places that don't have humans handling the cards (gas pumps, self-checkouts at Home Depot, etc.,) and even places with humans aren't helpful (restraunts never ask for ID even with it written on the signature strip, and some places with the VISA/ATM stand out for the customer to swipe it themselves).
My brother was recently doing credit checks and compiled the following info for those that wish to (if you're denied a job or credit, you're elibable to free report): credit report info.
Re:... at the same time as the IPv6 upgrade! ???
on
Replacing SMTP?
·
· Score: 1
If only NASA could keep those measurement conversions straight, perhaps we wouldn't crash any more craft into Mars?
Why in the world is NASA not using all metric units in the first place?
Wasn't the US supposed to start moving to Metric in the 70s? I'm planning to teach my kids SI units and they can learn the others later. I can do rough calculations in my head, but it's still like a second language to me, having to use reference marks to 'known' measurement.
Oh, and Network Solutions, GTG.net and a few other Registrars are supporting IPv6 hosts... does you favorite registrar support IPv6? Some I've spoken with recently: joker.com, godaddy.com do not, and Neustar for.US and Affilias for.INFO do not as well. Have you nagged your ISP about native IPv6 support? Do they even know what IPv6 is? Call 'em and bug 'em monthly. Sprintlink offers tunneled support over their backbone, and NTT/Verio will begin offering support in the US soon, Hurrican has good tunnel support. We're getting there...
1. I'm a CCNP/CCDP, so I don't think I'm unbaised enough to comment on this.
2. Too many addresses? Yeah, and 640K of memory is more than anyone will ever need.
3. a.When was the last time you surfed to a website by putting in the IP? Everyone uses DNS. For common devices netadmins will use IPv6 addresses such as 2001:401:ce0a::1 and not the EUI-64.
b. Actually, when not using EUI-64 you can use as much of the address space as you want for the network portion, just like with IPv4 CIDR.
c. 48-bit MAC address
d. Longer network prefix doesn't bloat routing tables, bad address allocations do. Many ISPs are treating IPv6 allocations the same as IPv4 and being stringent knowing that just because a router can do IPv6 doesn't mean it magically has more RAM.
4. I'd say the bulk of the "civilized" world uses 1500 MTU anyway, or for the poor PPPoE folks 1492 MTU. Screw dial-up;-p
Sorry to be so nit-picky, I'm tired. I'm sure you've had days like this too;-)
Looks to me as if Pair Networks is more a webhosting company. Much easier to "deploy" IPv6 in that sort of enviroment. Get a leased line to an 6Bone peering site, enable some BSD/Linux routers (as Cisco didnt' even have production IPv6 code a year ago), and there you go.
UUNET/MCI: IPv6 is not a service we offer at this time.
Sprintlink: Non-production 6Bone tunneled-only, they'll be testing dual-stack IOS code in very limited deployment in 8 months. No SLAs available.
SBC (not that I'd call them "large-scale, but definately midsized, and they just happen to be my DSL ISP and that of a number of large clients with T1s and government clients with DS3s): "Huh, what's IPv6?"
HE.net is more of a hosting provider, but I know you can get native IPv6 from them.
I hear NTT/Verio will be rolling out IPv6 here soon (already have it in Japan).
Care to name some more ISPs you can go native IPv6 with in the US and provide some linkage to back it up?
But I do suggest emailing and calling your ISP. Let them know you want it. Hell, let them know what it is in most cases.
Actually it can be used in as small as space as/64. Online stores, etc., are simply going to just love IPv6 and using the EUI-64 address as a "super-cookie."
Not in reply to your post, but the previous post: it's not that long or mangled: It's simply your MAC with ff:fe padded inbetween and changing the first byte from "00" to "02". For instance: 00-50-DA-22-91-49
in EUI-64 would be:::0250:DAff:fe22:9149 (note that I kept ff:fe lower-case to make it more readable).
Personally, I love it. If you use radvd to advertise the LANs network address and the "well-known DNS IP" as secondary bindings on up to 3 servers on your network (could be anycast servers for really high redundancy) you really don't need DHCP at all as the client will just figure it all out automagically.
Except when you forgot to tell your Tivo to record something and you want to talk to it remotely (I do this often, via SSH port forwarding, but lucky me I have 9 static IPs). Or you forgot a file on your home PC, and DAMN it sucks if you've got PPPoE and that IP keeps changing and for some reason your DynDNS service is flaking on you. Or you want to check your network of webcams while on vacation, but you don't want to publish them on the web (perhaps you've got a secure webserver at home). How about you want a lawn care service to manage your internet-enabled sprinkler system? Perhaps you've got a "smart" fridge, cupboards and trash that tracks all the food you have at home (or don't have), and you want to be able to get to it from your Palm, or a terminal at the store. I could go on and on with "silly" ideas that could actually take off if we had a reliable way to get to devices on our home networks.
Further, if Linksys, etc. came out with IPv6 aware devices, and at first the were acting as NAT/proxy to IPv4 and at the same time tunneling routers for IPv6, and eventually just IPv6 on both sides with NAT/proxy for old IPv4 hosts to get to IPv6. It's only a matter of time, especially with Cisco buying Linksys.
Plus, the beauty of IPv6 is that so long as your tunnel broker remains the same, your IPv6 site address should as well, and your if you're using EUI-64 you're PCs will remain the same (using the auto-assigned IPv6 address from their MAC address), so things like DynDNS (or maintain your own DNS) could get you to all your PCs at home without a VPN tunnel. Eventually when things flip-flop and there is more IPv6 traffic and all the ISPs go IPv6 native, you wouldn't need the tunnel broker and for sure you're home net would just stay the same.
I've yet to mess with IPv6 IPSEC, but naturally you could encrypt as well (or just SSH as I do).
I'm mainly jazzed as I just got my/48 up and working with Sprintv6.net and BGP4+ today (still not native, but tunneling through only 2 Sprint IPv4 routers to get to the 6Bone cuts latenacy from 200-300ms back down to nearly normal).
I plan to start mirroring more and more content and providing it only via IPv6;-)
What's that all mean? The MD5 checksums are supplied by RedHat, and you can run the md5sum text utility to generate the MD5 checksums on the ISO CD images you download to verify that nothing has been changed (for instance a trojan app introduced into the installer, etc.).
Note that/. keeps adding spaces in my text (including in the MD5 checksum, bleh).
If you look at the directory structure, there is a clear difference between all previous versions before "9". All others did include a ".0" version even if marketing didn't hype dot-oh (most companies don't like to talk about the dot-oh part of a new release):
People who state things like this just don't get what a TiVo-like device can do. Yeah, even your VCR can do the cron job thing, but who ever used a VCR to record shows (what a hassle, and what happens if no one puts your blank tape back in)?
It's so much more than just a simple cron job. Being able to flag a show or type of show and have it automatically record what you like without you having to tell it the time/date and channel is what makes this sort of thing useful.
My TiVo knows me so well that I never miss a SciFi mini-series, motorcycle race or soccer match that I've forgoteen to tell it to record. Of course, having 109 hours of space helps as well.
What's to stop RIAA/MPAA from ordering up cablemodem or DSL service to get around PeerGuardian? Especially non-static dynamic PPPoE-based DSL where they can easily change their IP address on a whim.
Something to do with Winsock2's broken implementation of 4-to-6 addressing. If you search the Mozilla dev list, you'll find the explaination. It's the OS's fault, in other words.
"Mozilla supports IPv6 on FreeBSD and Linux, but not for Windows. This is apparently because Windows XP doesn't support IPv4-mapped IPv6 addresses"
Google for "mozilla ipv6 support windows" and you'll find a PPT which you can "view as HTML" to see what I'm quoting from.
The first thing I do when connected to any WiFi (home or remote) is fire up an SSH session with port forwarding to my home proxy server.
When I check my email from a public PC, I sign into my mail server via https/ssl.
Of course, the weakness is still anyone sniffing mail to/from my email server or my home proxy. But that's not going to be the general public, rather my ISP or the government, which I can't much control (same goes for land line or cell phones). At least everyone else sitting at StarBucks isn't going to know my password or see my email.
Slashdot Mirror
How about https on tcp/443? I doubt they'd block this as many things these days require it (FAFSA comes to mind).
If they don't block it (try a few random banks' homebanking sign-on page to see if you can connect), then use proxytunnel to pass ssh via tcp/443 and you can then portforward to a home proxy server.
Best of all, it's all encrypted and they can see none of it other than the ssh connection to your home server which is encrypted (as would be any https tcp/443 traffic).
SquidGuard changelog
Stupid lameness filter blocks me from posting more, but you can easily see it in the changelog.
Someone could have a brought an infected laptop from home. Of course, if these are life-critical they should be firewalled even from their own "internal" network as extra security precation (as often you can't just go rebooting these types of boxes once a week just because a new patch came out).
I should have done a Google first. It's no rumor, native IPv6 from Verio in the US: NTT/Verio
But enough tunneled peers to make it worth while and interesting to gather stats from:
/pub/matrix/revolutions_640_dl.mov b _ o a mozilla@example.com ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a foo@foo.com ftp 0 * i /pub/matrix/revolutions_640_dl.mov b _ o a -wget@ ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * i /pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * i /pub/matrix/revolutions_640_dl.mov b _ o a pldms@mac.com ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a ftp@ ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a mozilla@example.com ftp 0 * i /pub/matrix/revolutions_640_dl.mov b _ o a IEUser@ ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a me@me.com ftp 0 * c /pub/matrix/revolutions_640_dl.mov b _ o a mozilla@example.com ftp 0 * i
Wed Aug 20 23:21:52 2003 315 2001:1818::2e0:81ff:fe03:73c8 34239231
Wed Aug 20 23:52:53 2003 1216 3ffe:b80:2:2e61::2 25862144
Thu Aug 21 00:05:49 2003 251 2001:1448:0:1a:2d0:b7ff:fe7d:dddc 34239231
Thu Aug 21 00:58:05 2003 1202 2002:40af:f7e6::40af:f7e6 49152
Thu Aug 21 01:04:15 2003 11 2002:ccb:ec3e::ccb:ec3e 114688
Thu Aug 21 02:14:05 2003 451 evila.danbri.org 34239231
Thu Aug 21 02:51:10 2003 612 2001:8b0:c:1:240:63ff:fecb:fccd 34239231
Thu Aug 21 03:40:15 2003 256 D5778B68.kabel.telenet.be 34239231
Thu Aug 21 04:32:41 2003 94 2001:7c8:82:0:260:97ff:fe91:877a 5324800
Thu Aug 21 06:16:23 2003 1301 2001:718:1802:1001:74df:b1c0:2c2c:5d8c 34239231
Thu Aug 21 08:37:33 2003 227 A192216.N1.Vanderbilt.Edu 34239231
Thu Aug 21 12:17:45 2003 13 3ffe:bc0:d7:1:220:78ff:fe04:8775 311296
Oh, and Sprintlink has an IPv6 backbone which customers can tunnel to (2 hops from my external router). NTT/Verio is rumored to be turning up native IPv6 in the US as well. Asia and Europe are big IPv6 users (least IP allocations, most population).
It's funny how few folks must use IPv6 out there... I figured I'd get a few connections at least, but, nope, none from
IPv6 Mirror
Slashdot's 'lameness filter' sucks. I can't even post a snapshot of failed wget session. Anyway:d /revolutions_640_dl.mov
d /revolutions_640_dl.mov
wget http://progressive.warnerbros.com/thematrix/us/me
And when it fails after 20 times try again using the partial:
wget -c http://progressive.warnerbros.com/thematrix/us/me
Don't have wget on your Windows box? Install Cygwin
A friend looking into an H2 said that model is not diesel but gas.
I moved 3 years ago and had the druggie who moved in after me at my former address open a credit card with my bank in my name (not too hard, I was born, married, and bought a house in this state). I didn't find out until 6 months later, since they'd never gotten payment (it was opened with the old address and for whatever reason no bills were ever forwarded to me). I got a call at work, from the bank, wondering why I wasn't paying on my credit card. "What credit card, I only have an ATM/Debit card with you?" Found it he'd opened it 2 weeks after I moved, don't know how he got all the info. He tested it for a fill-up at the gas station right down the street, then went to SF and filled up one more time, then bought a $1000 digital camera, and never used the card again.
I took the rest of the day off to get things taken care of (file a police report, call all the places I had major accounts with, write them letters, etc.). Basically nothing came of it, it was marked fraud and removed from my credit report (but would have caused me problems if I'd not known about it and had been trying to buy a car or a house, fortunately I'd already bought both).
Since then I've had another credit card used fraudulently. It's a card I use exclusively for online purchases, nothing else. I was happening to check the balance and saw 3 charges the day before, two in England and one in France - two were expensive travel cruises and one was for a couple hundred dollars worth of sports gear from an online store (all of it booked online). I called my credit card company and told them I had no clue what the purchases were. They put a freeze on the account and none of the transactions went through (even though I'd not have been liable anyway), but that was just dumb luck.
What I really like about that credit card company (MBNA) is that they new offer a feature called "Shop Safe." It allows you to set a maximum amount for a purchase and an expiration date, and then generates a temporary credit card number. I love this idea and I cannot understand why more companies don't do it.
I really think credit card companies should allow you to specify that you won't allow the card to be used for online purchases. I've got 3 cards with photos on them, and that's how I'd have those set: no purchases that are not in person (ban both online and phone purchases). For those purchases I'll generate a random number thru MBNA with a cap set.
Even that wouldn't stop the places that don't have humans handling the cards (gas pumps, self-checkouts at Home Depot, etc.,) and even places with humans aren't helpful (restraunts never ask for ID even with it written on the signature strip, and some places with the VISA/ATM stand out for the customer to swipe it themselves).
My brother was recently doing credit checks and compiled the following info for those that wish to (if you're denied a job or credit, you're elibable to free report):
credit report info.
If only NASA could keep those measurement conversions straight, perhaps we wouldn't crash any more craft into Mars?
.US and Affilias for .INFO do not as well. Have you nagged your ISP about native IPv6 support? Do they even know what IPv6 is? Call 'em and bug 'em monthly. Sprintlink offers tunneled support over their backbone, and NTT/Verio will begin offering support in the US soon, Hurrican has good tunnel support. We're getting there...
Why in the world is NASA not using all metric units in the first place?
Wasn't the US supposed to start moving to Metric in the 70s? I'm planning to teach my kids SI units and they can learn the others later. I can do rough calculations in my head, but it's still like a second language to me, having to use reference marks to 'known' measurement.
Oh, and Network Solutions, GTG.net and a few other Registrars are supporting IPv6 hosts... does you favorite registrar support IPv6? Some I've spoken with recently: joker.com, godaddy.com do not, and Neustar for
1. I'm a CCNP/CCDP, so I don't think I'm unbaised enough to comment on this.
;-p
;-)
2. Too many addresses? Yeah, and 640K of memory is more than anyone will ever need.
3.
a.When was the last time you surfed to a website by putting in the IP? Everyone uses DNS. For common devices netadmins will use IPv6 addresses such as 2001:401:ce0a::1 and not the EUI-64.
b. Actually, when not using EUI-64 you can use as much of the address space as you want for the network portion, just like with IPv4 CIDR.
c. 48-bit MAC address
d. Longer network prefix doesn't bloat routing tables, bad address allocations do. Many ISPs are treating IPv6 allocations the same as IPv4 and being stringent knowing that just because a router can do IPv6 doesn't mean it magically has more RAM.
4. I'd say the bulk of the "civilized" world uses 1500 MTU anyway, or for the poor PPPoE folks 1492 MTU. Screw dial-up
Sorry to be so nit-picky, I'm tired. I'm sure you've had days like this too
Actually, last I heard the 6Bone's 'end was nigh,' slated for 6/6/2006.
Looks to me as if Pair Networks is more a webhosting company. Much easier to "deploy" IPv6 in that sort of enviroment. Get a leased line to an 6Bone peering site, enable some BSD/Linux routers (as Cisco didnt' even have production IPv6 code a year ago), and there you go.
Perhaps I googled for the wrong Pair Networks?
UUNET/MCI: IPv6 is not a service we offer at this time.
Sprintlink: Non-production 6Bone tunneled-only, they'll be testing dual-stack IOS code in very limited deployment in 8 months. No SLAs available.
SBC (not that I'd call them "large-scale, but definately midsized, and they just happen to be my DSL ISP and that of a number of large clients with T1s and government clients with DS3s): "Huh, what's IPv6?"
HE.net is more of a hosting provider, but I know you can get native IPv6 from them.
I hear NTT/Verio will be rolling out IPv6 here soon (already have it in Japan).
Care to name some more ISPs you can go native IPv6 with in the US and provide some linkage to back it up?
But I do suggest emailing and calling your ISP. Let them know you want it. Hell, let them know what it is in most cases.
Actually it can be used in as small as space as /64. Online stores, etc., are simply going to just love IPv6 and using the EUI-64 address as a "super-cookie."
::0250:DAff:fe22:9149 (note that I kept ff:fe lower-case to make it more readable).
Not in reply to your post, but the previous post: it's not that long or mangled: It's simply your MAC with ff:fe padded inbetween and changing the first byte from "00" to "02". For instance:
00-50-DA-22-91-49
in EUI-64 would be:
Personally, I love it. If you use radvd to advertise the LANs network address and the "well-known DNS IP" as secondary bindings on up to 3 servers on your network (could be anycast servers for really high redundancy) you really don't need DHCP at all as the client will just figure it all out automagically.
Except when you forgot to tell your Tivo to record something and you want to talk to it remotely (I do this often, via SSH port forwarding, but lucky me I have 9 static IPs). Or you forgot a file on your home PC, and DAMN it sucks if you've got PPPoE and that IP keeps changing and for some reason your DynDNS service is flaking on you. Or you want to check your network of webcams while on vacation, but you don't want to publish them on the web (perhaps you've got a secure webserver at home). How about you want a lawn care service to manage your internet-enabled sprinkler system? Perhaps you've got a "smart" fridge, cupboards and trash that tracks all the food you have at home (or don't have), and you want to be able to get to it from your Palm, or a terminal at the store. I could go on and on with "silly" ideas that could actually take off if we had a reliable way to get to devices on our home networks.
Further, if Linksys, etc. came out with IPv6 aware devices, and at first the were acting as NAT/proxy to IPv4 and at the same time tunneling routers for IPv6, and eventually just IPv6 on both sides with NAT/proxy for old IPv4 hosts to get to IPv6. It's only a matter of time, especially with Cisco buying Linksys.
/48 up and working with Sprintv6.net and BGP4+ today (still not native, but tunneling through only 2 Sprint IPv4 routers to get to the 6Bone cuts latenacy from 200-300ms back down to nearly normal).
;-)
Plus, the beauty of IPv6 is that so long as your tunnel broker remains the same, your IPv6 site address should as well, and your if you're using EUI-64 you're PCs will remain the same (using the auto-assigned IPv6 address from their MAC address), so things like DynDNS (or maintain your own DNS) could get you to all your PCs at home without a VPN tunnel. Eventually when things flip-flop and there is more IPv6 traffic and all the ISPs go IPv6 native, you wouldn't need the tunnel broker and for sure you're home net would just stay the same.
I've yet to mess with IPv6 IPSEC, but naturally you could encrypt as well (or just SSH as I do).
I'm mainly jazzed as I just got my
I plan to start mirroring more and more content and providing it only via IPv6
ftp://r2.ipv6.artoo.net/pub/
http://ftp.redhat.com/pub/redhat/linux/beta/sever
For instance (using RH9 as an example, since I have it handy):What's that all mean? The MD5 checksums are supplied by RedHat, and you can run the md5sum text utility to generate the MD5 checksums on the ISO CD images you download to verify that nothing has been changed (for instance a trojan app introduced into the installer, etc.).
Note that
If you look at the directory structure, there is a clear difference between all previous versions before "9". All others did include a ".0" version even if marketing didn't hype dot-oh (most companies don't like to talk about the dot-oh part of a new release):
http://ftp.redhat.com/pub/redhat/linux/
People who state things like this just don't get what a TiVo-like device can do. Yeah, even your VCR can do the cron job thing, but who ever used a VCR to record shows (what a hassle, and what happens if no one puts your blank tape back in)?
It's so much more than just a simple cron job. Being able to flag a show or type of show and have it automatically record what you like without you having to tell it the time/date and channel is what makes this sort of thing useful.
My TiVo knows me so well that I never miss a SciFi mini-series, motorcycle race or soccer match that I've forgoteen to tell it to record. Of course, having 109 hours of space helps as well.
Actually, the bulk of Cisco PoE gear does not use "unused pairs." They use the same pairs that data is using: 1,3 2,6:
Inline Power Detect
What's to stop RIAA/MPAA from ordering up cablemodem or DSL service to get around PeerGuardian? Especially non-static dynamic PPPoE-based DSL where they can easily change their IP address on a whim.
Something to do with Winsock2's broken implementation of 4-to-6 addressing. If you search the Mozilla dev list, you'll find the explaination. It's the OS's fault, in other words.
"Mozilla supports IPv6 on FreeBSD and Linux, but not for Windows. This is apparently because Windows XP doesn't support IPv4-mapped IPv6 addresses"
Google for "mozilla ipv6 support windows" and you'll find a PPT which you can "view as HTML" to see what I'm quoting from.
The first thing I do when connected to any WiFi (home or remote) is fire up an SSH session with port forwarding to my home proxy server.
When I check my email from a public PC, I sign into my mail server via https/ssl.
Of course, the weakness is still anyone sniffing mail to/from my email server or my home proxy. But that's not going to be the general public, rather my ISP or the government, which I can't much control (same goes for land line or cell phones). At least everyone else sitting at StarBucks isn't going to know my password or see my email.