SixXS::Sunset 2017-06-06

Privacy Extension
[de] Shadow Hawkins on Wednesday, 24 February 2010 18:30:00
Hi, i want to ask something about the IPv6 Privacy Extension. I know that the Privacy Extension can be enabled with the command:
sysctl -w net.ipv6.conf.eth0.use_tempaddr=2
But how can i change that random generated IPv6 Adr, so that my Client for example have all 1 hours a new Adr? best regards Michael
Privacy Extension
[ch] Jeroen Massar SixXS Staff on Thursday, 25 February 2010 15:04:03
But how can i change that random generated IPv6 Adr, so that my Client for example have all 1 hours a new Adr?
That would be quite a different algorithm than RFC3041. If you want something like what you mean though, you could script it and then crontab it. Effectively what you need to do is mark old addresses as 'deprecated' so that they don't get used for new connections, add a new random one and and then delete them when there are no connections left using those addresses. I personally really do not see the advantage of RFC3041, the only bit that there is an arg for is that it is not your MAC address anymore, but you can then just also override that portion of the EUI-64 address and presto. You also have to realize that the privacy is limited as people who want to track will just correlate you first as a single /64, then as a /48.

Please note Posting is only allowed when you are logged in.

Static Sunset Edition of SixXS
©2001-2017 SixXS - IPv6 Deployment & Tunnel Broker