Mark Atwood via devel writes: > Any updates or thoughts? I don't see it solving any real problem. When you assume an attacker of the strength needed for it to be effective, then he'd surely have more effective ways to mess with your network. Also, as long as it doesn't use both DNSSEC and NTS an attacker that controls all your ingress can still move your clock without you ever knowing.
Plain old NTP doesn't fall for that as long as you have enough local time sources that are good to better than a second if you set your clock parameters (tos) accordingly. Regards, Achim. -- +<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+ Wavetables for the Terratec KOMPLEXER: http://Synth.Stromeko.net/Downloads.html#KomplexerWaves _______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
