← Back to context

Comment by vaughnegut

1 day ago

Why not? It's easy to set up and manage and it just points at an internal IP address

I consider that an unnecessary leak of private topology, it's not info that needs to be public. IPv6 addresses are not really ever internal, and an exploitable vulnerability in a firewall product leads to the possibility of a directly addressable target. Guessing a v6 address without a name pointing to it is impractical at best.