[ntp:hackers] Using authentication

Majdi S. Abbas msa at latt.net
Thu Nov 5 21:05:31 UTC 2015


On Thu, Nov 05, 2015 at 11:26:01AM -0800, Hal Murray wrote:
> Is monitoring really going to solve the problem?  What are you going to do 
> when you notice something fishy going on?

	Well, if you lose sync and alert on it, you know something is
up, and can either pick other sources of time or choose to free run for
a while, which may be less dangerous than having your clock manipulated
by external attackers.

	Would a recommendation for a full mesh internally and orphan mode 
help here?  It should at least cause individual nodes to fail out and
panic if they get jerked around too much.

	--msa


More information about the hackers mailing list