| Summary | Allow providing netmask when $conf[auth][checkip] is checked |
| Queue | Horde Base |
| Queue Version | Git master |
| Type | Enhancement |
| State | Accepted |
| Priority | 1. Low |
| Owners | |
| Requester | arjen+horde (at) de-korte (dot) org |
| Created | 04/30/2015 (3667 days ago) |
| Due | |
| Updated | 01/22/2016 (3400 days ago) |
| Assigned | |
| Resolved | |
| Milestone | |
| Patch | No |
Version ⇒ Git master
http://www.internetsociety.org/deploy360/resources/privacy-extensions-for-ipv6-slaac/
Priority ⇒ 1. Low
Patch ⇒ No
Milestone ⇒
Queue ⇒ Horde Base
Summary ⇒ Allow providing netmask when $conf[auth][checkip] is checked
Type ⇒ Enhancement
State ⇒ New
will be logged out frequently when Privacy Extensions for SLAAC (RFC
4941) are used (in many OSes, this will be the default address that is
used for outbound connections. Typically, these addresses will timeout
after a day, but the lifetime of an address may be as short as an hour
(depending on what is reported by the router). Note that users don't
have any control over the lifetime of these addresses, since the
lifetime is determined by the router.
Of course, it woudl be possible to switch off $conf[auth][checkip]
completely, but it is also possible to look at just the first 64 bits
of the IPv6 address (the network part) as only the host part (the
remaining 64 bits) will change. Therefor I propose to add a
configuration option where only a configurable number of bits is
checked (default: 64) in case a client is connected over IPv6.