macOS Ventura

I hate new versions of macOS. I try to not call them upgrades anymore. They’re just changes for the sake of changes. I finally did a reinstall of my 2017 MacBook from Big Sur (11.x) to Ventura (13.x) and one thing annoys me and another thing is broken. I’ve seen no benefits from the new OS.

The one thing that annoys me is that they replaced System Preferences.app with System Settings.app. Sure, it feels more like iOS but macOS runs on computers and not mobile devices. It requires more scrolling and clicking than System Preferences.app and it feels like browsing settings is more painful than it was previously.

The one thing I’ve noticed that’s outright broken is the ability to disable randomized IPv6 addresses, which I do not want on my network. By default, macOS uses RFC 4941 (privacy extensions) and CGA (cryptographically generated addresses), which is part of SEND, by default. This results in IPv6 addresses being randomized and periodically rotated and includes randomized link local addresses, too. The sysctls have changed over the releases but in Monterey and Big Sur these could be disabled by adding the following to /etc/sysctl.conf:

net.inet6.ip6.use_tempaddr=0
net.inet6.send.opmode=0

The first one still works but the second one does not. It is flipped back to 1 on every reboot (seems like the option in sysctl.conf is ignored) and setting it to 0 once the system has booted does nothing regardless of turning off and on Wi-Fi. Even twiddling the insecure flag in ifconfig doesn’t help:

ifconfig en0 inet6 insecure

The LL and GUA addresses are still CGA-based and show secured in the ifconfig output:

(orion:11:06:EST)% ifconfig en0
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
	options=400<CHANNEL_IO>
	ether dc:a9:04:8b:dd:95 
	inet6 fe80::77:a9c8:1948:3dad%en0 prefixlen 64 secured scopeid 0x5 
	inet6 2620:6:2003:106:816:afef:2dbc:262a prefixlen 64 autoconf secured 
	inet 10.3.6.100 netmask 0xffffff00 broadcast 10.3.6.255
	nd6 options=201<PERFORMNUD,DAD>
	media: autoselect
	status: active

I’ve yet to find a solution to this. There’s no option in the GUI and no option exposed in networksetup, either.

Anyone have any ideas on how to fix this?

Leave a Reply

Your email address will not be published. Required fields are marked *