[ntp:questions] Re: server's address in ntp payload?

David Schwartz davids at webmaster.com
Sat Nov 26 03:36:04 UTC 2005


"Danny Mayer" <mayer at gis.net> wrote in message 
news:43852DAE.1070905 at gis.net...

> I didn't design the autokey protocol and have not reviewed it. However
> from what I understand the IP addresses are used as seeds for the
> authentication codes and ensure that it only work between two specific
> endpoints so MIM attacks are virtually impossible.

> Danny

    Anyone who thinks you can use IP addresses to protect against MIM 
attacks doesn't understand what a MIM attack is. The MIM can certainly spoof 
each end's IP address to the other machine.

    DS





More information about the questions mailing list