Assuming everyone is using /48 and binding to prefix::1, that's a 2^16 differenc... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Sayrus 9 months ago \| parent \| context \| favorite \| on: Ask HN: How did the internet discover my subdomain... Assuming everyone is using /48 and binding to prefix::1, that's a 2^16 difference with scanning the IPv4 address space. Assuming a specific host with only one IPv6 /24 block and delegating /64, this is a 2^12 difference. Scanning for /64 on the entire IPv6 space is definitely not as tiny. AWS only allows routing /80 to EC2 instances making a huge difference. It doesn't mean that we should rely on obscurity, but the entire space is not tiny as IPv4 was.

TZubiri 9 months ago [–]

Interesting, so you may see the Ipv6 space as a tree, and go just for the first addresses of the block.

But if you just choose a random address you would enjoy a bit more immunity from brute force scanners here.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact