NIST NTP servers

Jared Mauch jared at puck.nether.net
Tue May 10 20:18:01 UTC 2016


> On May 10, 2016, at 3:58 PM, Gary E. Miller <gem at rellim.com> wrote:
> 
> I'm sure there are many more examples, but likely you can no longer log
> in, via SSH or HTTPS, and your iPhone is dead.  I think any of those
> would qualify as more than an annoyance.

An unnamed vendor has code where if the clock on their router is not
set SSH won’t work as the crypto package signature says the
package isn’t valid.

Many of the not-before and not-after certificate systems have some fairly
serious issues.

https://www.cs.bu.edu/~goldbe/pub-index.html#NTP

is one place to start when it comes to on-path and off-path
NTP attacks that can skew clocks.

- jared


More information about the NANOG mailing list