Re: [nsp] Cisco Security Advisory: NTP vulnerability

From: Gert Doering (gert@greenie.muc.de)
Date: Fri May 10 2002 - 15:22:44 EDT

Next message: carmen@netvigator.com: "[nsp] C65XX/76XX authentication problem"
Previous message: Thomas Kernen: "Re: [nsp] Cisco Security Advisory: NTP vulnerability"
In reply to: Zhang, Anchi: "RE: [nsp] Cisco Security Advisory: NTP vulnerability"
Next in thread: Thomas Kernen: "Re: [nsp] Cisco Security Advisory: NTP vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Hi,

On Fri, May 10, 2002 at 09:16:53AM -0500, Zhang, Anchi wrote:
> On bad thing about the IOS NTP implementation, at least the version
> I tested, is that whether you have "ntp server" or "ntp peer" in your
> config, the IOS always replies upon receiving an NTP client request:

ntp peer <ip> or ntp server <ip>

do NOT change the behaviour regarding *other* IPs - it's just different
insofar as IOS will provide time to this specific <ip> (peer) or not
(server).

It will always answer to queries from other IPs unless filtered or
unless its time is bogus.

gert

-- 
USENET is *not* the non-clickable part of WWW!
                                                           //www.muc.de/~gert/
Gert Doering - Munich, Germany                             gert@greenie.muc.de
fax: +49-89-35655025                        gert.doering@physik.tu-muenchen.de

Next message: carmen@netvigator.com: "[nsp] C65XX/76XX authentication problem"
Previous message: Thomas Kernen: "Re: [nsp] Cisco Security Advisory: NTP vulnerability"
In reply to: Zhang, Anchi: "RE: [nsp] Cisco Security Advisory: NTP vulnerability"
Next in thread: Thomas Kernen: "Re: [nsp] Cisco Security Advisory: NTP vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:11:56 EDT