Conversation

Notices

1. pistolero (p@fsebugoutzone.org)'s status on Monday, 22-Jul-2024 20:42:19 JST pistolero
   Cough.
   ipv6_cve--i_am_never_wrong_about_anything.gif
   • † top dog :pedomustdie: and New Janny in Town like this.
   • тняэдт™ (threat@ryona.agency)'s status on Monday, 22-Jul-2024 21:44:42 JST тняэдт™

     in reply to

     • Data
     @Data @p ran into this problem myself in earlier days of weird networking adventures. i was only able to get things to work without a leak by setting to wg interfaces (v4+v6) then dealing with the respective route tables and nftables rules. disabling ipv6 is about the only thing that makes sense since imho i doubt we will ever see adoption greater than 30% of the internet (i pulled that figure out of my cornhole)
     † top dog :pedomustdie: repeated this.
   • Data (data@noauthority.social)'s status on Monday, 22-Jul-2024 21:44:45 JST Data

     in reply to

     @p

     It recently took me 3 days to find out why Google knows my exact location despite the VPN. I deactivated all geo settings in Firefox, deactivated WebRTC etc.
     In the end, it turned out that IPv6 was giving away my location. The Wireguard VPN runs over IPv4.
     After deactivating IPv6 in the network settings, Google greeted me with Japanese characters :-)

   • pistolero (p@fsebugoutzone.org)'s status on Monday, 22-Jul-2024 21:44:50 JST pistolero

     in reply to

     • тняэдт™
     • Data
     @threat @Data I think after the ISPs start caring about IPv6, we'll end up with a bunch of stupid "I gotta block IPv6 packets at the router level, all these stupid devices keep generating IPv6 addresses and side-channeling shit out through them."
     problemisconnecting.gif
     † top dog :pedomustdie: likes this.
   • тняэдт™ (threat@ryona.agency)'s status on Monday, 22-Jul-2024 23:49:12 JST тняэдт™

     in reply to

     • Data
     @p @Data maybe so. i liked the idea of ipv6 in the beginning when rfc was drafted. but it's been nothing but a pain. the only use-case i can make for it is an overlay network/p2p setup like yggdrasil or any other variant.
     
     my guess is isps will continue to nat+cgnat tf out of customers. this is fine by me.
     
     in retrospect, i should have bought many /24's back in the 00's. i could be a rich man with multiple datacenters sitting back playing with servers and counting cash :franciscointensifies:
     † top dog :pedomustdie: repeated this.
   • pistolero (p@fsebugoutzone.org)'s status on Monday, 22-Jul-2024 23:49:18 JST pistolero

     in reply to

     • тняэдт™
     • Data
     @threat @Data
     
     > but it's been nothing but a pain.
     
     Second-system syndrome. You look at the shit in the RFCs in the 1990s and it's overly ambitious, full of shit that no one's gonna implement correctly, but they keep plodding along and yelling that their utopia is the the inevitable future and that everyone else had better get with the program, and I will give you all of my money if anyone has ever spent 30 years yelling "My utopia is the inevitable future, you cannot resist progress, we have to jump now and worry about the world not being ready after we've converted!" and their utopia actually happened and it even vaguely resembled the brochure. I think it'll end up spreading through the space where it currently lives, it'll be the freight elevator of the internet. We'll move to Tor or something before that ever happens.
     
     > my guess is isps will continue to nat+cgnat tf out of customers. this is fine by me.
     
     I hate NAT but I think I hate IPv6 more. But I go look at the Go mailing list and here's a CVE for that stupid "IPv4 address represented in IPv6" and I have been saying for years that no one was going to parse it correctly. Look at RFC5964: if they can't even get the BNF right on the first try, what's supposed to happen?
     
     :chuckmoore: Chuck Moore pointed out, completely accurately, that people are shitty at writing parsers and that this is one of the biggest sources of bugs. (I can't say I agree with his conclusion that we should abandon parsers altogether.)
     
     > in retrospect, i should have bought many /24's back in the 00's. i could be a rich man with multiple datacenters sitting back playing with servers and counting cash :franciscointensifies:
     
     :franciscointensifies:
     † top dog :pedomustdie: likes this.
   • pistolero (p@fsebugoutzone.org)'s status on Tuesday, 23-Jul-2024 02:18:50 JST pistolero

     in reply to

     • Data
     @Data Ha, HFS. Disabling IPv6 wins again.
     disable_ipv6.jpg
     † top dog :pedomustdie: likes this.