[ntp:hackers] Time over HTTPS reference implementation

Poul-Henning Kamp phk at phk.freebsd.dk
Sun Dec 13 11:03:59 UTC 2015


--------
In message <20151213103952.3F423406057 at ip-64-139-1-69.sjc.megapath.net>, Hal Mu
rray writes:
>
>phk at phk.freebsd.dk said:
>> It will only take one single IoS vendor shipping something idiotic to bring
>> down normal HTTPS servers with this spec. 
>
>Already happened.
>
>https://en.wikipedia.org/wiki/NTP_server_misuse_and_abuse#Tardis_and_Trinity_C
>ollege.2C_Dublin

Continue reading and you'll realize why I care :-)

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.


More information about the hackers mailing list