830

submitted 1 day ago by qaz@lemmy.world to c/programmer_humor@programming.dev

159 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] nightwatch_admin@feddit.nl 17 points 1 day ago

It’s vulnerable af. And I mean really, it’s as bad as Netscalers or Fortigate shit. Like https://www.bleepingcomputer.com/news/security/hackers-abuse-ipv6-networking-feature-to-hijack-software-updates/ or https://www.bleepingcomputer.com/news/security/hackers-abuse-ipv6-networking-feature-to-hijack-software-updates/

Problem is, yes it’s hard to implement but it’s even a lot harder to get it properly secured. Especially because few people are using it, and not securing it is worse than disabling it.

[-] jj4211@lemmy.world 1 points 5 hours ago

But you could do the same thing with a rogue DHCP server I IPv4... With similar methods to prevent the misbehavior on networks

[-] Auli@lemmy.ca 2 points 15 hours ago

Don't see how that is anymore vulnerable then up 4.

[-] lena@gregtech.eu 26 points 1 day ago

Just a heads up, you linked to the same article twice

[-] Fuck_u_spez_@sh.itjust.works 29 points 1 day ago

Clipboards are also hard

[-] nightwatch_admin@feddit.nl 6 points 1 day ago

That’s odd, but truly sorry.

[-] NuXCOM_90Percent@lemmy.zip 18 points 1 day ago

And I would consider a detailed argument on why it is more secure to disable it to be a good reason.

Personally? I consider an IT team who don't know how to secure an ipv6 enabled network to not be competent. But that is a different conversation.

[-] nightwatch_admin@feddit.nl 10 points 1 day ago

Yeah, I run dual stack without much trouble myself. I believe it is mainly difficult for people because eyeball diagnostics are impossible with 6.

[-] StarlightDust@lemmy.blahaj.zone 1 points 21 hours ago

It has less eyes on it due to it being less popular. It also introduces an extra vector of attack.

[-] Auli@lemmy.ca 1 points 15 hours ago

It does not have less eyes on and it's 50% of Google traffic.

[-] TexasDrunk@lemmy.world 5 points 1 day ago

My detailed explanation at my old job is that the dev team was full of idiots who hardcoded ipv4 addresses into their fucking code. Seriously. When we migrated from data center to cloud they had to go patch everything. The CTO wouldn't do shit about it and the director was just there riding things out until retirement.

this post was submitted on 01 Aug 2025

830 points (96.5% liked)

Programmer Humor

25426 readers

1412 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev