Security Basics mailing list archives

Re: NTP Best Practices

From: Saurabh Bathe <sbathe () gw int beginbyte org>
Date: Mon, 28 May 2007 21:47:30 +0530

Mohamed Farid wrote:

From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of worldsmart02 () yahoo com
Sent: Tuesday, May 22, 2007 2:59 PM
To: security-basics () securityfocus com
Subject: NTP Best Practices

anyone has best practices for allowing NTP access to internal time
server from a external firewall, what are the security vulnerabilities
associated with this.


Not really. If you need to synchronise time, you need  to allow that.

The general practice is to have about 3 NTP servers synchronizing withexternal time servers and the rest of internal servers use these tosynchronize their time.


--Saurabh

Current thread:

NTP Best Practices worldsmart02 (May 23)
- Re: NTP Best Practices Nikhil Wagholikar (May 24)
- RE: NTP Best Practices Mohamed Farid (May 28)
  - Re: NTP Best Practices Saurabh Bathe (May 28)
- <Possible follow-ups>
- RE: NTP Best Practices Nhon Yeung (May 24)
- Re: NTP Best Practices visitnikhil (May 29)