Symantec and Ericsson are say Vista’s tunneling of IPv6 through IPv4, called Teredo, is a security risk. In essence it creates a tunneled session through firewalls, routers and other NAT’d devices which would be unrecognized as traffic would contained in IPv4 datagrams. Here’s the document Hoagland and Krishnan reviewed this week at the IETF IPv6 Operations Working Group.
The issue really is one of the Teredo tunneling approach, not something unique or specific to Vista. Teredo could technically be done on any platform. Vista does have Teredo tunneling turned on by default. Microsoft TechNet has instructions for disabling Teredo in Vista.
Comments