[ntp:security] [Bug 2936] Skeleton Key: Missing key check allows impersonation between authenticated peers

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Thu Jan 21 23:08:46 UTC 2016


http://bugs.ntp.org/show_bug.cgi?id=2936

Harlan Stenn <stenn at ntp.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
              Group|Security                    |

--- Comment #7 from Harlan Stenn <stenn at ntp.org> 2016-01-21 23:08:46 UTC ---
The solution is to have the ntp.keys file contain an optional 4th column, a
comma-separated list of IPs that are allowed to serve time.

This is documented in the ntp.keys documentation.  We still need to update
html/authentic.html - see bug 2997.

-- 
Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the security mailing list