zlacker

[parent] [thread] 3 comments
1. throw0+(OP)[view] [source] 2024-06-01 20:41:46
> The "kids and enemy states" are just hosing address ranges.

If you could scan one million addresses every second it would take about 500,000 years to scan just one /64. Not sure how practical that would be.

When I was still with an ISP that did IPv6 my Asus would block any incoming connection attempt unless it was a reply (SPI firewall), though it may have (IIRC) allowed pings in by default.

replies(2): >>tflol+Gw >>rainon+yz
2. tflol+Gw[view] [source] 2024-06-02 02:48:33
>>throw0+(OP)
SPI firewall looks interesting, appreciate the education.
3. rainon+yz[view] [source] 2024-06-02 03:31:28
>>throw0+(OP)
Yeah that is an absolutely bonkers amount of time so you're probably right in that the approach of low-effort wide net-casting attackers would have to change. I'm curious to know how Shodan etc. deal with this.
replies(1): >>kalleb+9M
◧◩
4. kalleb+9M[view] [source] [discussion] 2024-06-02 06:35:13
>>rainon+yz
Shodan ran an NTP pool time server on IPv6 and harvested the addresses of machines that checked in to get the time. Pretty clever.
[go to top]