[ntp:security] [Bug 3045] Bad authentication demobilizes ephemeral associations

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Thu May 5 08:55:34 UTC 2016


--- Comment #2 from Harlan Stenn <stenn at ntp.org> 2016-05-05 08:55:34 UTC ---
(In reply to comment #1)
> Miroslav writes:
> It seems there is also a problem with the peer_clear() call when
> autokey is enabled on permanent associations. The association is not
> demobilized with a spoofed crypto-NAK or packet with bad MAC, but the
> state variables are reset in the peer_clear() call, which I think
> allows a DoS attack preventing synchronization using that association.

Miroslav says the above (2nd paragraph) is really bug 3043.

Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the security mailing list