Re: NTP secure
I frequently use ntpdate from a cron job rather than running a full blown
xntpd server.
Matthew
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Sign the petition to let Ralph Nader in the Presidential Debates!
http://www.votenader.org/debates/
93222 signatures and not a damn thing from the CPD....
On Mon, 9 Oct 2000, Christian Hammers wrote:
> Hi
>
> I'm wondering if the ntp protocol that operates mainly in UDP can be
> used on a firewall server (to syncronise logfiles) or if it is too
> insecure.
>
> The only information useable for "security" seems, according to ethereal,
> the originate time stamp which means that an attacker has to be very fast
> to read this and send an own, faked packet faster than the original asked
> server.
>
> What would you recommend as time syncroniser on a firewall?
> (No big-company thing that would be worth to buy an DCF77 clock for it's
> own, just a fun project...)
>
> bye,
>
> -christian-
>
> --
> Christian Hammers WESTEND GmbH - Aachen und Dueren Tel 0241/701333-0
> ch@westend.com Internet & Security for Professionals Fax 0241/911879
> WESTEND ist CISCO Systems Partner - Premium Certified
>
>
> --
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
>
Reply to:
- References:
- NTP secure
- From: Christian Hammers <ch@westend.com>