I must admit I haven't tried it before I'll bring the laptop to work and give it a go.

If you turn on the M and O flags in RA, you can indeed use static IPv6 /128 address. But if the RA also advertise a prefix, Windows will also grab another /128 from the prefix. And if privacy extension isn't disabled (they are on by default), another randomized address will be leased from the router and Windows will use that one as the default IPv6 address seen by the world. The other two can only be used by programs that can manually bind to IPv6 addresses like Azureus and KVIRC.

So at the minimum, the privacy extension should be disabled if SLAAC isn't used.

I don't want to instill fears but how much can you trust on this privacy extentions alone to protect your privacy?

There's been talks circulating around that IPv4 addresses were NOT actually used up but they were occupied by cronies just to give out the fake sense of scarcity.

SOPA may be knocking on your door one day with the help on the creator of Windows giving out backdoors to reverse the cloaking of the IPv6 temporary addresses.

Who knows?

Chances are:

1) As Asellus pointed out, they may link your addresses to your ISP accounts.

2) SOPA can always get the help from software companies who sells OSes to reveal their privacy extention algos to uncloak you? Mi$ will always stand by authorities side because it takes care of their industry.

3) There's a posiibility of trojans/malicious programs that unkowingly help you disable privacy extentions in future?

DEFCON19 Ipocalypse Discussions and Myht behind IPv4 Running Out Of Addresses?

Oh my god You really are clutching at straws now if you're basing your argument on a satirical (if not paranoid) presentation.

Call me paranoid and the rest of the community who are against supporting IPv6 if you do.

How can you entrust your web usage privacy and put your hope on them to cover your tracks if they are the very same people behind the SOPA initiative?

It's like asking your enemy to protect you?

They'll always try to convince you that IPv6 is ALL safe without flaws. Just like which businessman will not create the ideal situation that favours his own advantage?

The DEFCON is an annual gathering held annually by well known industry experts from top universities and organizations.If they are showing concerns, users should even be more careful.

1. This has always happened (even with dynamic IPv4), only that with IPv6, the info is public. If the RIRs doesn't have the SWIP requirement for allocations bigger than /64 (for ARIN this applies whether it was allocation portable or direct allocation), the FBI or whatever can still get the info with a warrant/subpoena.

2. The privacy extension is well-known in a RFC. And there are no proof that the Microsoft's implementation of RFC3041 is flawed in any sense of that it is not random enough. If there is any problem, those people at DefCon community (or others) would have find out about it already. Oh BTW, Microsoft did wrote that RFC too, so it can be assumed that their implementation is decent. Anyway, the ISP knows that which /64 or /48 belong to whom, so whether you use a randomized IPv6 ala RFC3014 or a MAC-derived IPv6 address from the allocated prefix, nothing different really happens. A warrant/subpena will reveal that you own the prefix, regardless whether you use a fixed address or not.

3. Then that would be a stupid trojan. Privacy extension is only used in stateless autoconfig, not in stateful autoconfig or static addressing. What use that trojan do in a network that employs the latter two's configuration?

Who are this "us" versus "them" that you're talking about?

A lot of good stuff are presented at DEFCON. But this particular talk you found is.. well.. did you actually watch past the first 5 minutes? If you did, do you agree with their mystical analysis? For that reason I'm pretty sure it's a satirical piece.

You don't need to try very hard to see how quickly IPv4 space gets exhausted. It's only 4 billion. How many IP devices were shipped last year alone? Smartphones, tablets, gadgets, PCs, laptops, servers, network kit, etc. Easily a billion. You need to think big, think Internet-scale, to see the problem that we're having.

iipohbee,

kindly please have a look at the word satire on your favourite dictionary.

thank you very much.

What's big deal ? TM already ready for ipv6 :-)

oh my nasi goreng no, no, no!

ipv6 conspiracy and tm? my dear friend will have a field day.

I watched the entire Defcon video and fully agree with iipohbee.

How could iipohbee be the only one intelligent enough to see this??

iipohbee, I propose we fight against ipv6. The best way to protest against this outright intrusion of privacy is to boycott the internet completely, for a period of lets say... 10 years - that should be long enough to send them the message. We shall start tomorrow. Just unplug your modem and bury it in your backyard, and delete all APNs from your phone. I will do the same to show my support in this cause. No need to reply, just do it tomorrow at 12pm. THEY CANNOT TRACK US IF WE ARE OFFLINE.

This post has been edited by Moogle Stiltzkin: Jul 15 2017, 09:42 AM