[ntp:questions] Re: server's address in ntp payload?
davids at webmaster.com
Sat Nov 26 03:36:04 UTC 2005
"Danny Mayer" <mayer at gis.net> wrote in message
news:43852DAE.1070905 at gis.net...
> I didn't design the autokey protocol and have not reviewed it. However
> from what I understand the IP addresses are used as seeds for the
> authentication codes and ensure that it only work between two specific
> endpoints so MIM attacks are virtually impossible.
Anyone who thinks you can use IP addresses to protect against MIM
attacks doesn't understand what a MIM attack is. The MIM can certainly spoof
each end's IP address to the other machine.
More information about the questions