On Sat, Mar 2, 2019 at 12:36 PM Gary E. Miller via devel <devel@ntpsec.org> wrote: > Yes, but you seriously reduce the attack time window. Instead of > a possible MitM every few seconds, you need to grab the one time the > cookies are shared.
No you don't, because a MitM who appears at any time can drop time packets until you run out of cookies, forcing a renegotiation, and then MitM the renegotiation. _______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
