Jan 09 01:22 2015, Michiel van der Vlist wrote to Markus Reschke:
MR>> Let's say, it's not necessary for technical reasons. But if you take MR>> privacy issues into account things change ;)
MvdV> Dynamic addresses are a nuisance when running servers and they are MvdV> of very little help for preserving privacy. It is of no use against MvdV> governments or the NSA. It is also of little help against Google et MvdV> al. There are so many other ways to identify a user than just the MvdV> IP number.
I fully agree. SLAAC is based on the NIC's MAC address, it's a dead give-away. Cookies, super-cookies, cache spotting, the entropy of your web browser and so on. The problem is that a lot of people think dynamic prefixes create privacy, like their router would be sprinkled with the security fairy's magic dust. My original remark was meant ironically.
MR>> My provider assigns a new IPv4 address when re-connecting. But there MR>> seems to be a time window for the IPv6 LAN prefix.
MvdV> Any idea how long?
My guess is something in the range of a few minutes.
MR>> In theory I should get new addresses every 6 months, if there would MR>> be no outages or maintenance windows :)
MvdV> Why a new prefix every six month? For privacy that is far too long MvdV> a period to be of use.
<irony & facepalm> My provider has a nice solution for customers who realy care about their privacy. You can log into the customer support web interface and request a new prefix inside an 8 bit range. </irony & facepalm>
