IPv6 ready?

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Contributor Sam Hotchkiss

    (@samhotchkiss)

    Hi David– Yes and no. We technically do support IPv6, we do have IPv6 addresses in our DB, which indicates to me that it is working, but we have NOT explicitly tested it, so we aren’t officially saying “yes” yet.

    If you’re interested in helping us test that out, we’d certainly appreciate it!

    Thread Starter David Anderson / Team Updraft

    (@davidanderson)

    Hi Sam,

    I’ve not got IPv6 to my desktop, but I have to some servers, so if I can do something to help using those then do let me know.

    Presumably if you’ve not done anything explicit for IPv6 yet, then BP will just be blocking single addresses? If so, then that’ll not be giving any real protection against brute force attacks – because with IPv6 addresses in the same /64 are from the same machine. So, if BP is just looking at single addresses, then an attacker can run through approximately 18 billion billion (1.8 * 10^19) login attempts launched from the same host before it needs to use any IPv6 address more than once and get noticed by BP… and if anyone starts launching brute login attempts over IPv6 using this potential then presumably the database at BP HQ will fill up and melt before this happens as well!

    David

    Plugin Contributor Stephen Quirk

    (@sdquirk)

    David,
    BruteProtect now supports IPv6!

    Thanks,
    Stephen

    Thread Starter David Anderson / Team Updraft

    (@davidanderson)

    Hi Stephen,

    That’s good to hear. Can you say anything more about it? Presumably you are factoring out the host bits? Anything other assumptions being made?

    David

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘IPv6 ready?’ is closed to new replies.