For those who want to try it at home:

ping 33333333
ping 55555555

I am sorry, two random Internet users in Korea and Germany, your IP addresses are simply special.

  • enumerator4829@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    1
    ·
    18 hours ago

    Disempower users until they stop leaking leaking data.

    Infantilise users until they stop clicking random links in shitty phishing emails.

    Disempower power users until they can’t create security incidents by running shittily patched shadow IT on random open ports.

    If you don’t like it, don’t operate in organisations beholden to

    • GDPR
    • ISO 27001
    • PCI-compliance
    • NIS2
    • IP range reputation
    • Public reputation

    At least for organisations. As a private individual, I want my wide open ports on a public static IP at home.

    • interdimensionalmeme@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      16 hours ago

      IP range reputation

      That this even exists, is another reason why we need to switch to ipv6. There will be no maintaining “reputation lists” for 340 trillion trillion trillion IP addresses

        • interdimensionalmeme@lemmy.ml
          link
          fedilink
          arrow-up
          1
          ·
          8 minutes ago

          Yes, by default they will all have to be. So if you want any internet, you will have to allow strangers to communicate to you. You will have to be not a savage about it. But you will also have to be able to block outright abuse. So IDS, IPban, dns blocking, anti fish proxy, client side certificate and “drop all” as the default firewall policy. And compared to nat4, you’ll be opening ports rather than forwarding them.

          All this except ids is already standard issue in openwrt.