|
12-20-2014, 10:27 AM | #1 |
Bunion
|
Potentially serious security flaw in fundamental Internet SW
If you have a computer the odds are really good that you have a clock that uses the NTP (network time protocol). While the problem is about the part of the server that is on the time server, the security flaw can be used to create all sorts of security havoc.
Here is a pointer to the article. http://support.ntp.org/bin/view/Main/SecurityNotice For those is Internet facing servers, make sure that you either upgrade as soon as possible or ensure that NTP is disabled. This may create some issues for those who only get their network time from a single source. Use this Google string if you want to find out more: ntp security issues
__________________
I refuse to belong to any organization that would have me as a member. ~ Groucho Marx |
12-20-2014, 07:36 PM | #2 |
What's this button do?
|
Re: Potentially serious security flaw in fundamental Internet SW
It may take a while for firmware devices like routers to get an update. Do you think NTP should be disabled on these boxes until then?
__________________
|
12-20-2014, 08:19 PM | #3 |
Bunion
|
Re: Potentially serious security flaw in fundamental Internet SW
The flaw is mostly a serious issues for servers running 'ntpd'. I would encourage people to contact their router vendor. I have no opinion on whether or not NTP should be silenced. Lots of bad things can happen if you lose clock synchronization. Very bad things.
__________________
I refuse to belong to any organization that would have me as a member. ~ Groucho Marx |
12-20-2014, 08:42 PM | #4 |
Il megglior fabbro
|
Re: Potentially serious security flaw in fundamental Internet SW
I'm pretty sure I have a computer, but I have no idea what any of this means.
__________________
Ninety percent of everything is crap - Theodore Sturgeon. |
12-20-2014, 10:52 PM | #5 |
Admiral Douchebag
|
Re: Potentially serious security flaw in fundamental Internet SW
Unplug your clock radio and you should be fine.
__________________
Thanks Dave, Julian, James, Kelly, Peter, Gerry, Dave, Mo, Frank, Týr and Mr. Mark! |
12-21-2014, 06:39 AM | #6 |
Il megglior fabbro
|
Re: Potentially serious security flaw in fundamental Internet SW
Thanks, man. That I can do.
__________________
Ninety percent of everything is crap - Theodore Sturgeon. |
12-21-2014, 07:21 AM | #7 |
Life is for living
|
Re: Potentially serious security flaw in fundamental Internet SW
I stopped the pendulum on my Grandfather clock just to be on the safe side.
__________________
A 1911 in the hand is faster than 911 on the phone |
12-21-2014, 09:49 AM | #8 |
Bunion
|
Re: Potentially serious security flaw in fundamental Internet SW
wrong, wrong, wrong! You need to readjust it so that it only swings to the right.
__________________
I refuse to belong to any organization that would have me as a member. ~ Groucho Marx |
12-21-2014, 10:49 AM | #9 |
Admiral Douchebag
|
Re: Potentially serious security flaw in fundamental Internet SW
It don't mean a thing, if it don't have that swing, do da da do da
__________________
Thanks Dave, Julian, James, Kelly, Peter, Gerry, Dave, Mo, Frank, Týr and Mr. Mark! |
12-21-2014, 10:53 AM | #10 |
Il megglior fabbro
|
Re: Potentially serious security flaw in fundamental Internet SW
Or just switch to tighty-whities, so it doesn't swing at all.
__________________
Ninety percent of everything is crap - Theodore Sturgeon. |
12-21-2014, 11:24 AM | #11 |
Guest
Posts: n/a
|
Re: Potentially serious security flaw in fundamental Internet SW
|
12-21-2014, 01:55 PM | #12 |
Bilge Rat
|
Re: Potentially serious security flaw in fundamental Internet SW
__________________
"Man's mind is his basic tool of survival. Life is given to him, survival is not." -John Galt |
Thread Tools | |
Display Modes | |
|
|