Re: NTP secure

To: Christian Hammers <ch@westend.com>
Cc: debian-firewall@lists.debian.org
Subject: Re: NTP secure
From: Matthew Whitworth <matthew@okcomputer.org>
Date: Mon, 9 Oct 2000 07:02:56 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.4.21.0010090701080.14862-100000@warsaw.okcomputer.org>
In-reply-to: <[🔎] 20001009113431.A17777@westend.com>

I frequently use ntpdate from a cron job rather than running a full blown
xntpd server.

Matthew

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Sign the petition to let Ralph Nader in the Presidential Debates!
http://www.votenader.org/debates/
93222 signatures and not a damn thing from the CPD....

On Mon, 9 Oct 2000, Christian Hammers wrote:

> Hi
> 
> I'm wondering if the ntp protocol that operates mainly in UDP can be
> used on a firewall server (to syncronise logfiles) or if it is too
> insecure.
> 
> The only information useable for "security" seems, according to ethereal,
> the originate time stamp which means that an attacker has to be very fast
> to read this and send an own, faked packet faster than the original asked
> server. 
> 
> What would you recommend as time syncroniser on a firewall?
> (No big-company thing that would be worth to buy an DCF77 clock for it's
> own, just a fun project...)
> 
> bye,
> 
>  -christian-
> 
> -- 
> Christian Hammers    WESTEND GmbH - Aachen und Dueren     Tel 0241/701333-0
> ch@westend.com     Internet & Security for Professionals    Fax 0241/911879
>            WESTEND ist CISCO Systems Partner - Premium Certified
> 
> 
> --  
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 
>

Reply to:

References:
- NTP secure
  - From: Christian Hammers <ch@westend.com>

Prev by Date: what does the rp in rp_filter stand for?
Next by Date: Re: IP fw-in deny eth0 UDP
Previous by thread: NTP secure
Next by thread: Re: NTP secure
Index(es):
- Date
- Thread