ntpd vulnerabilities
Poul-Henning Kamp
phk at phk.freebsd.dk
Mon Dec 22 19:14:36 UTC 2014
--------
In message <CAKE2PDvvtHWYkN+4O0us+Nc227mYVJMz=_DeHR14VRRYgETfhA at mail.gmail.com>
, jungle Boogie writes:
>Would you say a MITM attack is similar to a forged ntp reply?
>
>If so, have you seen this:
>http://quigon.bsws.de/papers/opencon04/ntpd/mgp00018.html
While that does make it harder to spoof NTP packets "blind", it
does *nothing* for MITM resistance.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the freebsd-security
mailing list