Remember Me
forgot your password?

Ntp Vandalism: Solutions to the Misuse and Abuse of Ntp Servers

Posted: Jul 7th, 2008 | Comments: 0 | Views: 104 | Bookmark and Share
Syndicate this Article

NTP servers, like most systems are open to abuse and misuse. NTP servers can be flooded with traffic (a distributed denial of service - DDoS attack), the server's access policy could be violated or the NTP rules of engagement drawn up to prevent misuse of time servers could be breached.

The abuse of NTP servers has received much attention of late due primarily to the case of D-link and a Danish Stratum 1 NTP server run by Poul-Henning Kamp. Mr Kamp noticed a huge rise in traffic to his time server, which at the time was the only Danish stratum 1 server available to the general public.

He discovered that up to 90 percent of the traffic was coming from D-Link router products that were latching on to his stratum 1 server for a time reference.

Normally only stratum 2 servers should connect to stratum 1 server and perhaps some servers where applications require more precision than that of a normal computer network, which can receive its time code via a multitude of sources.

In many countries, timekeeping services are provided by a government agency (such as NPL in the UK or NIST in the US). As there is no Danish equivalent, Kamp provided his time service to the general public in return his ISP agreed to provide a free connection the assumption that the bandwidth involved would be relatively low. With the increased traffic caused by the D-Link routers, his ISP then requested Kamp pay for the extra bandwidth.

D-Link is a Taiwanese based company that manufactures wireless and Ethernet products for the home and small office environment. Whilst not a deliberate attempt at sabotage Kamp’s time server D-Link routers were configured to directly query over 40 stratum 1 servers.

The disagreement lasted fro nearly six months where in 2006 D-Link and Kamp announced they had come to an agreement and D-Link have reconfigured their new routers but little can be done about the existing products out there.

A new defense has subsequently been added to NTP which responds to an authorized request with a packet explicitly requesting the client server stops requesting. This packet has been dramatically called the Kiss-of-death - KOD.

Unfortunately the new requirements of the NTP protocol do not work retrospectively, and old clients and implementations do not recognize KoD it and at the moment there are not any technical means to counteract the misuse of NTP servers.

Richard n Williams

Richard N Williams is a technical author and a specialist in the

telecommunications and network time synchronisation industry helping to

develop dedicated NTP clocks. Please visit us for more information about

NTP or

other network

time server solutions.

Rate this Article: 1 / 5 stars - 1 vote(s)
Print Email Re-Publish

Add new Comment

Captcha

  • Latest Networks Articles
  • More from Richard n Williams

Easy Ways to Make Money

By: donkeymailer | 31/12/2009
Although there are thousands of different ways to make money online in the comfort of apartments and keep increasing the number every single day. But most of them are not easy to make money online.

Cisco 640-553 exam

By: andy | 31/12/2009
With our products and ample questions practice, there is no possibility of you failing the exam. For most of the questions exam of Implementing Cisco IOS Network Security (IINS) repeats the questions but changes the answers, the values etc and hence presence of mind and soundness of concepts is a must. Unless you know the gist of the theory, you cannot pass the exam.

EC0-350 exam torrent

By: andy | 31/12/2009
Certinside remains one of these most updated websites which is popular all over the world for its manifold characteristics. It keeps excellent information on IT Certifications and provides the current data. It has not only thorough information on every certification but also provides you your required study materials for your targeted certification. Certinside is the best choice for you.

642-145 test questions

By: andy | 31/12/2009
It is well known that Others 642-145 exam test is the hot exam of Cisco certification. Cisco certification exam offer you all the Q&A of the 642-145 real test . It is the examination of the perfect combination and it will help you pass 642-145 exam at the first time!

000-667 study guide

By: andy | 31/12/2009
There are many sites which provide information on IBM 000-667 exam and provide you study materials like IBM 000-667 dumps and others. To make a good preparation for this highly professional exam you must have a complete knowledge and for that you must use an authentic source. Certinside is the best source to prepare for your IBM 000-667 exam for 100 percent results.

642-586 exam torrent

By: andy | 31/12/2009
Certinside rightfully deals an IT test as a board exam. The first thing you have to do with Certinside is check out the sample objectives. You will get an idea of the actual products. Once you have the hang of the pattern of the test exam will be a piece of cake. Since the test comprises of multiple choice questions, in preparation of the test choice making is the most important thing to learn.

000-237 Exam Study Questions

By: andy | 31/12/2009
Certify Dumps Q&A are designed to maximize your learning productivity and focuses only on the important aspects that will help you pass your exam, the first time. We provide you IBM 000-237 Study Questions with verified answers accompanied by detailed explanations. These Study Questions are supplied by our industry experts, to provide you with an experience like taking the actual test and ensure that you fully understand the course, as well as the concepts behind the 000-237 Q&A.

350-030 braindump

By: andy | 31/12/2009
A passing grade on the beta qualifies a Cisco certification candidate to schedule the lab exam. Results, however, are typically not available until six to eight weeks after the close of the beta. A candidate may attempt the beta 350-030 study guide only once during the beta period.

The Fascinating World of Ladders

By: Richard n Williams | 23/12/2009 | Home Improvement
There is more to the humble ladder than you may think. Most households have them, under all that junk in the garage, or propped up in a cupboard, and yet little thought goes into what are quite fascinating tools.

The Funny side of Ladders

By: Richard n Williams | 23/12/2009 | Home Improvement
When the word ladder is ever uttered. Our minds always turn to think that aluminium ladder in the garage or the step ladders under the stairs. But the word ladder has had many uses over the years and not ladders can be climbed.

Choosing the Right Ladder for the Job

By: Richard n Williams | 23/12/2009 | Tools & Equipment
There are a vast array of different types of ladders on the market and it can be often confusing when it comes to buying a ladder to find the exact one that suits your requirements. Despite the myriad of names and terms given to some ladders, they pretty much fall into three categories:

How to Start Recycling

By: Richard n Williams | 23/12/2009 | Home & Family
It is estimated that four out of ten households are still not recycling their waste and the most common reason given is that people say they find recycling confusing.

Saving Money in the Winter Months – Money Saving Tips for Home and Office

By: Richard n Williams | 23/12/2009 | Home & Family
The winter brings with it more than just the cold and dark nights. Quite often winter is a time of high bills and large running costs especially if you have a home to run and a business. And with many of us now working at home and trying to run an office in the house, th e extra costs can be crippling this time of year.

Recycle your Christmas Tree

By: Richard n Williams | 23/12/2009 | Gardening
Christmas is a busy time, not just with all that eating, drinking and being merry. At Christmas time there is a huge deluge of recycling to be done; all that wrapping paper, empty boxes and left over turkey – not to mention the Christmas Tree.

Choosing an Eco Christmas gift

By: Richard n Williams | 17/12/2009 | Home & Family
We all know that Christmas is a time for giving but attempting to get that perfect gift for every member of the familiy can not only be difficult at the best of times but trying to buy an eco friendly Christmas gift can make it nearly impossible.

Stand-by Savers and Energy Monitors

By: Richard n Williams | 17/12/2009 | Home & Family
One of the biggest struggle throughout the cold winter months is trying to keep those large heating and lighting bills down. This time of year is an expensive one; with Christmas around the corner the last thing most of us need is huge heating bills landing on the mat in the New Year.

Submit Your Articles Free: Signup
Richard n Williams Richard n Williams has 314 articles online.
Contact Author
Subscribe to RSS

Print article
Publish this Article
Send to friend
Article Categories



Need Help?
Contact Us
FAQ
Submit Articles
Editorial Guidelines
Blog
Site Links
Recent Articles
Top Authors
Top Articles
Find Articles
Site Map
Webmasters
Partner with Us
RSS Builder
RSS
Link to Us
Business Info
Advertising
Article Writing
Partner with Us

Use of this web site constitutes acceptance of the Terms Of Use and Privacy Policy | User published content is licensed under a Creative Commons License.
Copyright © 2005-2008 Free Articles by ArticlesBase.com, All rights reserved. (0.05, 1, w3)