Re: NTP Md5 or AutoKey?

From: Glen Kent (no email)
Date: Tue Nov 04 2008 - 06:11:00 EST

  • Next message: Erwan Gourcuff: "Re: L2tp for DSL"

    My original question got drowned amidst all this vibrant discussions!

    Do folks already use or plan to use Autokey for NTP?

    Glen

    On Tue, Nov 4, 2008 at 4:00 PM, <> wrote:
    > On Mon, Nov 03, 2008 at 10:23:07PM -0800, Paul Ferguson wrote:
    >> On Mon, Nov 3, 2008 at 10:15 PM, Glen Kent <> wrote:
    >>
    >> > Hi,
    >> >
    >> > I was wondering what most folks use for NTP security?
    >> >
    >> > Do they use the low cost, light weight symmetric key cryptographic
    >> > protection method using MD5 or do folks go in for full digital
    >> > signatures and X.509 certificates (AutoKey Security)?
    >> >
    >>
    >> I'm just wondering -- in globak scheme of security issue, is NTP
    >> security a major issue?
    >>
    >> Just curious.
    >>
    >> - ferg
    >
    > depends on your POV... in a dns context, TSIG and DNSSEC validation
    > depend on accurate time - failure to resolve data because of a time slip
    > might be considered a significantissue.
    >
    > --bill
    >


  • Next message: Erwan Gourcuff: "Re: L2tp for DSL"





    Hosted Email Solutions

    Invaluement Anti-Spam DNSBLs



    Powered By FreeBSD   Powered By FreeBSD