[ntp:questions] Re: Secure W32Time

Danny Mayer mayer at ntp.isc.org
Tue Mar 21 03:37:45 UTC 2006


David J Taylor wrote:
> Prenard wrote:
>> Dear all,
>>
>> Is their a possibility in Windows XP or 2003 to make a secure
>> connection to one of the public pool time servers?
>> If a secure connection to my Windows and to the a public server is
>> possible, what kind of authentication method should i configure on my
>> 2003 server? Windows can communicate with different security methods:
>> - Ecryption and integrity
>> - Integrity only
>> - Custom: AH and/or ESP (ntegrity with SHA1 or MD5 and Encryption
>> algorithm with 3DES or DES)
>>
>> I want to pay more attention on the security leaks from my server to
>> the public connection.
>>
>> Thank you to help me!
>>
>> Patrice
> 
> Patrice,
> 
> I think it unlikely you will be able to use W32Time to make a secure NTP 
> connection, but you might want to check out the security options in NTP. 
> There is a Windows port of NTP here:
> 
>   http://www.meinberg.de/english/sw/ntp.htm
> 
> I'm not sure if any of the pool servers will support a "secure" 
> connection, though, and perhaps someone can tell us?
> 
There is no such thing as a secure NTP server. You can authenticate a
server if you are given the client side keys but that's the best you can do.

Danny

> People also tend to run NTP on Firewalls or DMZ servers to provide 
> security isolation.
> 
> David 
> 
> 
> _______________________________________________
> questions mailing list
> questions at lists.ntp.isc.org
> https://lists.ntp.isc.org/mailman/listinfo/questions
> 




More information about the questions mailing list