Re: Whatever happened to the great migration to IPv6?
"The firewall in Windows actually works perfectly fine"
HA HA HA (oh you were serious?)
"on top of that, it's much harder to find the few unfirewalled machines on v6 because the address space is so damn large"
ok here's where I demonstrate classic hacker thinking to show you why 'so damn large' doesn't matter:
a) set up a web server that waits for IPv6 connections, even using embedded advertising on popular web sites
b) when the IPv6 computer connects, queue up a bot-net to scan for vulnerabilites and infect this new machine (once the vuln has been found)
c) once infected, new machine is part of the botnet now, to be used for "whatever", or put ransomware on it, or just be malicious and nuke everything on drive 'C' (or whatever)
etc.
this is a very valid and likely scenario. We know there have been rogue ads on well-known ad networks before, infecting computers with 0-day vulnerabilities even. I recall MSN being affected once, within the last few years. So this scenario is REAL. And yes, it SHOULD frighten you.
Besides, Micro-shaft's problems seem to be with their own implementation of DHCPv6 which is, in my opinion, uproariously funny. I would suggest they look at the Linux and BSD implementations, and see how THEY are doing it, as well as server packages like ISC-DHCP, then fix their own stuff so it behaves according to the RFC's. Lots of really really good, and free, sample code out there.
https://www.isc.org/downloads/dhcp/
(and others at the same web site)