On 13/05/2017 10:05 PM, Borja Marcos wrote:
Let me show you a practical example :)
Imagine that you are sitting behind a misconfigured IPv6 router which doesn't block incoming connection. A hotel hotspot for example. I guess it's going to be commonplace.
Yes, I can see your example. Fortunately, one thing I have seen so far is routers being supplied with all inbound connections stopped. Furthermore, mine doesn't allow you to totally disable the firewall, only for specific hosts (which I have done for some key Linux systems), or for specific ports on specific hosts (which I did on Windows for testing - I never leave Windows exposed to the net). Now with a router like mine, your scenario wouldn't work, because the temporary IP addresses would never be allowed to pass.
So, there are ways to build it into the router design to make it harder for people to shoot themselves in the foot. :)