Port randomization

Fri, 29 May 2020 02:45:29 -0700 

We should do this.  It's not trivial.  Doing it involves reworking the code is 
a good way.

Subject: [Ntp] I-D Action: draft-ietf-ntp-port-randomization-03.txt
From: internet-dra...@ietf.org
Date: Fri, 29 May 2020 00:13:38 -0700
To: <i-d-annou...@ietf.org>
Cc: n...@ietf.org

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Network Time Protocol WG of the IETF.

        Title           : Port Randomization in the Network Time Protocol 
Version 4
        Authors         : Fernando Gont
                          Guillermo Gont
                          Miroslav Lichvar
        Filename        : draft-ietf-ntp-port-randomization-03.txt
        Pages           : 10
        Date            : 2020-05-28

Abstract:
   The Network Time Protocol can operate in several modes.  Some of
   these modes are based on the receipt of unsolicited packets, and
   therefore require the use of a service/well-known port as the local
   port number.  However, in the case of NTP modes where the use of a
   service/well-known port is not required, employing such well-known/
   service port unnecessarily increases the ability of attackers to
   perform blind/off-path attacks.  This document formally updates
   RFC5905, recommending the use of port randomization for those modes
   where use of the NTP service port is not required.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-ntp-port-randomization/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-ntp-port-randomization-03
https://datatracker.ietf.org/doc/html/draft-ietf-ntp-port-randomization-03

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-ntp-port-randomization-03


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/


_______________________________________________
ntp mailing list
n...@ietf.org
https://www.ietf.org/mailman/listinfo/ntp


-- 
These are my opinions.  I hate spam.



_______________________________________________
devel mailing list
devel@ntpsec.org
http://lists.ntpsec.org/mailman/listinfo/devel

Reply via email to