nanog mailing list archives

Re: NIST NTP servers

From: Valdis.Kletnieks () vt edu
Date: Wed, 11 May 2016 20:08:32 -0400

On Wed, 11 May 2016 21:07:21 +0200, Florian Weimer said:

* Chris Adams:

First, out of the box, if you use the public pool servers (default
config), you'll typically get 4 random (more or less) servers from the
pool.  There are a bunch, so Joe Random Hacker isn't going to have a
high chance of guessing the servers your system is using.


A determined attacker will just run servers in the official pool.


Such attacks have allegedly been attempted against Tor by certain
very well funded adversaries.

Thus my statement that if you're seeing that scale attack on your time
sources, the fact that your time source is being attacked is the *least*
of your problems...

Attachment: _bin
Description:

Current thread:

Re: NIST NTP servers, (continued)
- - - Re: NIST NTP servers Steven Miano (May 11)
    - Re: NIST NTP servers Laurent Dumont (May 12)
    - Re: NIST NTP servers Lyndon Nerenberg (May 12)
    - Re: NIST NTP servers Mel Beckman (May 11)
    - Re: NIST NTP servers Baldur Norddahl (May 11)
    - Re: NIST NTP servers Lamar Owen (May 11)
    - Re: NIST NTP servers Mel Beckman (May 11)
    - Re: NIST NTP servers Scott Whyte (May 11)
    - Re: NIST NTP servers Lamar Owen (May 11)
    - Re: NIST NTP servers Florian Weimer (May 11)
    - Re: NIST NTP servers Valdis . Kletnieks (May 11)
    - Re: NIST NTP servers Eric Kuhnke (May 11)
    - Re: NIST NTP servers Valdis . Kletnieks (May 11)
    - Re: NIST NTP servers Sharon Goldberg (May 11)
    - Re: NIST NTP servers Sharon Goldberg (May 11)
    - Re: NIST NTP servers Harlan Stenn (May 11)
    - Re: NIST NTP servers Harlan Stenn (May 11)
    - Re: NIST NTP servers Andreas Ott (May 11)
    - Re: NIST NTP servers Mel Beckman (May 11)
    - Re: NIST NTP servers Jay R. Ashworth (May 11)
    - Re: NIST NTP servers Majdi S. Abbas (May 11)

(Thread continues...)