[ntp:questions] Re: handling of falsetickers with dumb NTP clients

Danny Mayer mayer at gis.net
Fri Sep 12 19:45:06 UTC 2003


"Maarten Wiltink" <maarten at kittensandcats.net> wrote in message news:<3f619650$0$58711$e4fe514c at news.xs4all.nl>...
> Danny Mayer wrote in message
> <3a2a0492.0309111425.4a0ec463 at posting.google.com>...
> [...]
> >Well NTP and DNS, or at least BIND, have a somewhat Tweedledum-Tweedledee
> >realtionship. They both are dependent on each other. NTP needs DNS to
> >lookup and get IP addresses, and BIND needs an accurate source of time
> >especially for security-related connections.
> 
> 
> There are more holes in that statement than in my socks.
> 
> NTP works just fine seeing only IP addresses and never a hostname
> in its life,

You may noty be aware of it but it's still doing a DNS lookup for the
address.

> and BIND doesn't require NTP so much as correct time.

True, but where is it getting the time from?

> And other DNS servers may be different.
> 
Yes but if they support TSIG then they need an accurate time source.

Danny



More information about the questions mailing list