On 7/17/07, Simetrical <Simetrical+wikilist(a)gmail.com> wrote:
On 7/17/07, George Herbert
<george.herbert(a)gmail.com> wrote:
Being able to block on IPv6 MAC address allows us
to conveniently
block a persistent vandals specific computer, even if they move it or
change ISPs. Unless they're bright enough to mangle the MAC
address...
You can be sure that ISPs like AOL aren't suddenly going to change
their mind about this whole privacy business and start exposing to the
public Internet IP addresses that can be pinned down to a single
customer.
AOL is pretty much the tiny minority there; most ISPs baldly present
the outside world either a DHCPed or static IP for the customer.
IPv6 will likely be similar; anyone not doing NAT or proxys right now
probably won't start doing it later. And, unlike IPv4, the IPv6
addresses (if not NATed) will show us the MAC on the system
involved...
This doesn't help ID the person (MAC tells you manufacturer, and
sometimes model, but that's all). But it does help for blocking...
We'll have to maintain our existing mechanisms for AOL and other
special cases, and anyone still using IPv4.
But it would behoove us to look to the future a bit and plan for
taking advantage of it, if possible 8-)
--
-george william herbert
george.herbert(a)gmail.com