[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

NIST NTP servers

Subject: NIST NTP servers
From: jared at puck.nether.net (Jared Mauch)
Date: Tue, 10 May 2016 16:18:01 -0400
In-reply-to: <[email protected]>
References: <CAKdv5965qRG_Qe=xL+=7dcZzeaU2y8xcYXfr7EAAEFnRJ7nnyw@mail.gmail.com> <[email protected]> <[email protected]> <[email protected]> <[email protected]>

> On May 10, 2016, at 3:58 PM, Gary E. Miller <gem at rellim.com> wrote:
> 
> I'm sure there are many more examples, but likely you can no longer log
> in, via SSH or HTTPS, and your iPhone is dead.  I think any of those
> would qualify as more than an annoyance.

An unnamed vendor has code where if the clock on their router is not
set SSH won?t work as the crypto package signature says the
package isn?t valid.

Many of the not-before and not-after certificate systems have some fairly
serious issues.

https://www.cs.bu.edu/~goldbe/pub-index.html#NTP

is one place to start when it comes to on-path and off-path
NTP attacks that can skew clocks.

- jared

References:
- NIST NTP servers
  - From: freetexwatson at gmail.com (b f)
- NIST NTP servers
  - From: mel at beckman.org (Mel Beckman)
- NIST NTP servers
  - From: msa at latt.net (Majdi S. Abbas)
- NIST NTP servers
  - From: chuckchurch at gmail.com (Chuck Church)
- NIST NTP servers
  - From: gem at rellim.com (Gary E. Miller)

Prev by Date: CALEA
Next by Date: NIST NTP servers
Previous by thread: NIST NTP servers
Next by thread: NIST NTP servers
Index(es):
- Date
- Thread