Comment 0 for bug 241305

Alexandre Dulaunoy (adulau) wrote :


The apt source list for security update is by default configured to

When you have a system using only IPv6 (and having not access to IPv4 via NAT-PT), is only reachable in IPv4.

It would be wise to configure an AAAA record to to at least
point to one of the many mirrors supporting IPv6 connectivity.

That would avoid system running natively in IPv6 to lack by default the security

Thanks a lot,

Kind regards

PS : I checked this as being a security vulnerability but this is more a configuration issue
on the Ubuntu network infrastructure than a real security vulnerability:

A DNS AAAA request :

dig -t AAAA

; <<>> DiG 9.4.1-P1 <<>> -t AAAA
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26872
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0


;; AUTHORITY SECTION: 3600 IN SOA 2008061805 10800 3600 604800 3600

;; Query time: 134 msec
;; WHEN: Thu Jun 19 15:17:39 2008
;; MSG SIZE rcvd: 98