Is NTP not secure. I know it can be secured but I think in practice people
disable passwords.
The default in most distributions and most servers is no crypto. So it's not
that anybody disables authentication but doesn't go through all the work to
enable it.
albertson.chris@gmail.com said:
> Is NTP not secure. I know it can be secured but I think in practice people
> disable passwords.
The default in most distributions and most servers is no crypto. So it's not
that anybody disables authentication but doesn't go through all the work to
enable it.
NIST has an experimental program to use crypto.
http://www.nist.gov/pml/div688/grp40/auth-ntp.cfm
--
These are my opinions. I hate spam.
HS
Harlan Stenn
Tue, Dec 4, 2012 3:00 AM
What is the 'thing' being secured?
H
What is the 'thing' being secured?
H
SM
Scott McGrath
Tue, Dec 4, 2012 10:12 PM
NTP servers. A way to hack them is to connect to one with a hostile server with higher stratum as NTP servers are configured as 'peers' Without the md5 you can steer a server with md5 the servers just ignore the attacking server
Sent from my iPhone
On Dec 3, 2012, at 7:00 PM, Harlan Stenn stenn@ntp.org wrote:
NTP servers. A way to hack them is to connect to one with a hostile server with higher stratum as NTP servers are configured as 'peers' Without the md5 you can steer a server with md5 the servers just ignore the attacking server
Sent from my iPhone
On Dec 3, 2012, at 7:00 PM, Harlan Stenn <stenn@ntp.org> wrote:
> What is the 'thing' being secured?
>
> H
>
> _______________________________________________
> time-nuts mailing list -- time-nuts@febo.com
> To unsubscribe, go to https://www.febo.com/cgi-bin/mailman/listinfo/time-nuts
> and follow the instructions there.
