Re: Netatalk and NFS


Subject: Re: Netatalk and NFS
From: Tim Carlson (tim@santafe.edu)
Date: Mon Jan 08 2001 - 13:37:24 EST


On Mon, 8 Jan 2001, Matthew Keller wrote:

> *lol* You're not the first person to get all bunched up about that. The
> problem with NTP is that it is a security hole. It's very easy for any
> random person to spoof NTP packets and REALLY mess things up.

People keep saying this yet I have never heard of a real life example.
Reading through the NTP documentation it seems that in fact it is quite
hard. I mean there such things as keys in an NTP configuration that people
should use.

Besides that.. all of the script kiddies are more interested in buffer
overruns :)

> second (~3 seconds if you do the long math) which an hourly rdate will
> accomplish just fine, with only a trivial security risk. (and cuts down
> on network traffic too).

I will use more network traffic in sending this one email than NTP will
use all day :-)

Tim



This archive was generated by hypermail 2b28 : Sun Oct 14 2001 - 03:04:30 EDT