Path: utzoo!utgpu!watserv1!watmath!att!linac!pacific.mps.ohio-state.edu!zaphod.mps.ohio-state.edu!sdd.hp.com!spool.mu.edu!uunet!shelby!WINDSOR.DARTMOUTH.EDU!bishop
From: bishop@WINDSOR.DARTMOUTH.EDU (Matt Bishop)
Newsgroups: comp.protocols.kerberos
Subject: Re: Time synchronization
Message-ID: <9102221319.AA02247@windsor.dartmouth.edu>
Date: 22 Feb 91 13:19:18 GMT
Sender: news@shelby.stanford.edu (USENET News System)
Reply-To: Matt Bishop <Matt.Bishop@dartmouth.edu>
Organization: Internet-USENET Gateway at Stanford University
Lines: 13


Folks,
   If you're interested in the security issues raised by NTP version 2,
I have a technical report that discusses a lot of them, especially the
authentication mechanism and problems.  If you want a copy, you can get
a postscript version by anonymous ftp to dartvax.dartmouth.edu (get
the file pub/dropoff/ntp2sec.ps); if you want a paper copy, send a note
to Deb Minichiello (Debra.Minichiello@dartmouth.edu) asking for TR #154,
"A Security Analysis of Version 2 of the Network Time Protocol NTP."
Be aware that the file on dartvax will go away in a week (on 3/2).
   Enjoy!

Matt Bishop


Brought to you by Super Global Mega Corp .com