Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: What are the NTP 3 vulnerabilities?
Operating Systems Solaris What are the NTP 3 vulnerabilities? Post 302385277 by TonyFullerMalv on Thursday 7th of January 2010 04:31:17 PM
Old 01-07-2010
The time on your systems could be subverted a causing denial attack.
Whch ever version of NTP you are using if you are in control of your NTP server you can make your NTP system use an encryption key, according to this page:
http://www.eecis.udel.edu/~mills/ntp/html/keygen.html
what they are proposing requires NTPv4 to be used.

This:
ConfiguringAutokey < Support < NTP
may help in setting this up.

and this page:
http://support.ntp.org/bin/view/Main/SecurityNotice
carries security notices relating to NTP.
Last edited by TonyFullerMalv; 01-07-2010 at 05:39 PM..
 

8 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

NTP and 11.i .....

Hi there! Does anybody know if HP-UX 11.i supports NTP? If yes, what version on NTP should be used? Thanx (1 Reply)
Discussion started by: penguin-friend
1 Replies

2. IP Networking

Ntp

How can I install ntp on AIX (4.3-5.1) ? thnx (1 Reply)
Discussion started by: Gismo
1 Replies

3. Solaris

ntp server and ntp client

All, How do you set a Solaris 9 server which received ntp updates from a ntp server to broadcast them on a local subnet. I have created a /etc/inet/ntp.conf file to receive the updates from a server on network and need to make this server become like a ntp relay from the main server. Any... (1 Reply)
Discussion started by: bubba112557
1 Replies

4. Solaris

Question about NTP

Hi i have question about NTP Client OS: Solaris 10 (11/06) I'm create /etc/inet/ntp.conf and remove /etc/inet/ntp.client In ntp.conf : server 10.0.0.1 server 10.0.0.2 # svcadm enable ntp # svcs -a | grep ntp online 12:48:16 svc:/network/ntp:default # ntpq ntpq>... (1 Reply)
Discussion started by: jess_t03
1 Replies

5. Solaris

Ntp

Hello I use Solaris 10 and I have NTP packages arlrady installed pkginfo | grep -i ntp system SUNWntpr NTP, (Root) system SUNWntpu NTP, (Usr) How to configure NTP? thanks (2 Replies)
Discussion started by: melanie_pfefer
2 Replies

6. Linux

How often does Linux NTP server update its time with the external NTP server?

All here, thank you for listening. Now I've set up a Linux NTP server by adding a external windows NTP server in /etc/ntp.conf. Then I start the ntpd daemon. But how often does the Linux NTP server update its time with the external NTP server? I've looked up everywhere but found no information... (1 Reply)
Discussion started by: MichaelLi
1 Replies

7. HP-UX

Setting up NTP HP-UX clients from solaris NTP server

Hi I wonder if its possible to setup NTP clients running HP-UX o.s. from a solaris 10 NTP server? FR (3 Replies)
Discussion started by: fretagi
3 Replies

8. Red Hat

Ntp client sync with local over ntp server

Hi, I have two ntp servers in my cluster and I want all the nodes in my cluster to sync with either of the ntp servers or just one. Unfortunately it keep rotating the sync, between my ntp server 1, ntp server 2 and local. Is there anyway I can change the sync to avoid local? # ntpq -p ... (3 Replies)
Discussion started by: pjeedu2247
3 Replies

LEARN ABOUT OSF1

ntp.drift

ntp.drift(4)						     Kernel Interfaces Manual						      ntp.drift(4)

NAME

       ntp.drift - Network Time Protocol (NTP) drift file

DESCRIPTION

       When  the  NTP daemon (xntpd) is first started, it computes the error in the intrinsic frequency of the clock on the computer it is running
       on.  This process usually takes about a day or two after the daemon is started to compute a good estimate of this  (and	it  needs  a  good
       estimate to synchronize closely to its server).	Once the initial value is computed, it will change only by relatively small amounts during
       the course of continued operation.

       The driftfile declaration should always be included in the ntp.conf file.  This provides xntpd with complete path name to a file  in  which
       it can store the current value of the frequency error.  That way, if the daemon is stopped and restarted, it can reinitialize itself to the
       previous estimate without spending time recomputing the frequency estimate.

       The ntp.drift file contains one line with the following format: freq_offset flag Specifies the nominal frequency  offset.   DO  NOT  modify
       this  field.  Specifies the method used to improve system clock accuracy.  Specifies that xntpd runs a Phase-Locked Loop (PLL) algorithm to
       keep synchronized with other hosts.  This is the default.  Specifies the use of the  PLL  algorithm  in	the  kernel.   This  requires  the
       NTP_TIME kernel option.	After the option is configured in the kernel, edit the ntp.drift file and change the flag value to 1.

	      See System Administration for information on the NTP_TIME kernel option.

FILES

       Conventional name of the drift file

RELATED INFORMATION

       Commands: ntpdate(8), ntpq(8), xntpd(8), xntpdc(8)

       Files: ntp.conf(4)

       Network Administration, System Administration delim off

																      ntp.drift(4)
All times are GMT -4. The time now is 11:06 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy