From 6717e791629ec3f1ecc291688aad21af053312c0 Mon Sep 17 00:00:00 2001
From: Jeffrey Hsu <hsu@dragonflybsd.org>
Date: Mon, 3 Jan 2005 22:11:51 +0000
Subject: [PATCH] Set ip6_v6only to true by default.  The administrators who
 want to use IPv4-mapped IPv6 address should tweak the sysctl manually with
 knowledge of the security concerns.

Obtained from KAME (itojun).
Reference:
    ftp://ftp.itojun.org/pub/paper/draft-itojun-v6ops-v4mapped-harmful-01.txt
Same as NetBSD rev 1.55 by briggs, FreeBSD rev 1.18 by ume.
Submitted by Hiroki Sato <hrs@allbsd.org>.
---
 sys/netinet6/in6_proto.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/sys/netinet6/in6_proto.c b/sys/netinet6/in6_proto.c
index ebc8f6cb6b..a3847b7e7e 100644
--- a/sys/netinet6/in6_proto.c
+++ b/sys/netinet6/in6_proto.c
@@ -1,5 +1,5 @@
 /*	$FreeBSD: src/sys/netinet6/in6_proto.c,v 1.6.2.9 2003/01/24 05:11:35 sam Exp $	*/
-/*	$DragonFly: src/sys/netinet6/in6_proto.c,v 1.6 2004/10/15 22:59:10 hsu Exp $	*/
+/*	$DragonFly: src/sys/netinet6/in6_proto.c,v 1.7 2005/01/03 22:11:51 hsu Exp $	*/
 /*	$KAME: in6_proto.c,v 1.91 2001/05/27 13:28:35 itojun Exp $	*/
 
 /*
@@ -298,7 +298,7 @@ int	ip6_gif_hlim = 0;
 int	ip6_use_deprecated = 1;	/* allow deprecated addr (RFC2462 5.5.4) */
 int	ip6_rr_prune = 5;	/* router renumbering prefix
 				 * walk list every 5 sec.    */
-int	ip6_v6only = 0;
+int	ip6_v6only = 1;
 
 u_int32_t ip6_id = 0UL;
 int	ip6_keepfaith = 0;
-- 
2.41.0