Security considerations with using an NTP server

0

What are the security considerations to keep in mind when using an NTP server to synchronize time? Wikipedia lists that there are no known high-risk vulnerabilities, but are there any lower risk weak points one should be aware of?

Also, are there any special concerns when using NTP pool servers?

Ilari Kajaste

Posted 2009-12-04T07:54:37.797

Reputation: 3 282

Answers

1

Paper written for GIAC qualification with in depth analysis of NTP security.

An overview of NTP that's a little less verbose.

NTP is therefore vulnerable to security threats, whether from a malicious hacker who wants to alter the timestamp to commit fraud or a DDoS attack (Distributed Denial of Service - normally caused by malicious malware that floods a server with traffic) that blocks server access.

With regards to the pool servers, please remember they're volunteered servers.

From what I've read in the past, unless you have time critical tasks the highest risk is DDOS.

Darren Hall

Posted 2009-12-04T07:54:37.797

Reputation: 6 354

I would think the DDOS would affect the NTP server itself, not the server synching to the NTP server. – joeqwerty – 2009-12-04T21:52:11.427

http://www.cis.udel.edu/~mills/database/brief/autokey/autokey.ppt

Mills is the original author for NTP. In his powerpoint he specifies that

  • An intruder can generate packets faster than the server, network or client can process them, especially if they require expensive cryptographic computations.
– Darren Hall – 2009-12-04T22:07:59.193

Asked: 2009-12-04T07:54:37.797

Viewed: 1 766 times

Active: 2009-12-04T10:13:36.750