[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: NTP secure

I frequently use ntpdate from a cron job rather than running a full blown
xntpd server.


Sign the petition to let Ralph Nader in the Presidential Debates!
93222 signatures and not a damn thing from the CPD....

On Mon, 9 Oct 2000, Christian Hammers wrote:

> Hi
> I'm wondering if the ntp protocol that operates mainly in UDP can be
> used on a firewall server (to syncronise logfiles) or if it is too
> insecure.
> The only information useable for "security" seems, according to ethereal,
> the originate time stamp which means that an attacker has to be very fast
> to read this and send an own, faked packet faster than the original asked
> server. 
> What would you recommend as time syncroniser on a firewall?
> (No big-company thing that would be worth to buy an DCF77 clock for it's
> own, just a fun project...)
> bye,
>  -christian-
> -- 
> Christian Hammers    WESTEND GmbH - Aachen und Dueren     Tel 0241/701333-0
> ch@westend.com     Internet & Security for Professionals    Fax 0241/911879
>            WESTEND ist CISCO Systems Partner - Premium Certified
> --  
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: