NTP secure

To: debian-firewall@lists.debian.org
Subject: NTP secure
From: Christian Hammers <ch@westend.com>
Date: Mon, 9 Oct 2000 11:34:31 +0200
Message-id: <[🔎] 20001009113431.A17777@westend.com>

Hi

I'm wondering if the ntp protocol that operates mainly in UDP can be
used on a firewall server (to syncronise logfiles) or if it is too
insecure.

The only information useable for "security" seems, according to ethereal,
the originate time stamp which means that an attacker has to be very fast
to read this and send an own, faked packet faster than the original asked
server. 

What would you recommend as time syncroniser on a firewall?
(No big-company thing that would be worth to buy an DCF77 clock for it's
own, just a fun project...)

bye,

 -christian-

-- 
Christian Hammers    WESTEND GmbH - Aachen und Dueren     Tel 0241/701333-0
ch@westend.com     Internet & Security for Professionals    Fax 0241/911879
           WESTEND ist CISCO Systems Partner - Premium Certified

Reply to:

Follow-Ups:
- Re: NTP secure
  - From: Matthew Whitworth <matthew@okcomputer.org>
- Re: NTP secure
  - From: <bryan@visi.com>

Prev by Date: Re: Redirecting (is that the word)?
Next by Date: what does the rp in rp_filter stand for?
Previous by thread: Re: Redirecting (is that the word)?
Next by thread: Re: NTP secure
Index(es):
- Date
- Thread