Re: [Astlinux-users] Different NTP servers (was: Securing Astlinux 0.6.1)

Tue, 02 Dec 2008 13:26:47 -0800

My experience from the late 1990s until now is that Windows servers, from NT through Server 2003 (no experience with Vista) make lousy time servers. I am currently working on a project that requires stable, accurate time sources. Because of our market, all we have to work with for time servers at our customers' sites are Windows domain controllers. They are truly dreadful, gaining and losing seconds at a frightful rate. Our Linux ntpd daemon has to have very loose tolerances configured to track them. The best you can hope for is that there are multiple domain controllers available so they average out and that none of them are heavily loaded. The servers at pool.ntp.org appear to be much better. 

On Dec 2, 2008, at 12:51 PM, Mark Phillips wrote:


Hi Jose,


This is a "feature" of your NTP settings. I'm betting that you have  
your
NTP server set to "pool.ntp.org". As it's name suggests pool.ntp.org  
is

a pool of servers available for anyone to use. Your NTP client makes a
connection to the pool and it is forwarded on to one of the pool
members.

If you require a fixed NTP server then you must specify that server in
your NTP setup.


In terms of security it would behove you to stick with the pool.  
When I
worked at NASD we required the time stamping of trades to be  
accurate to

within 3 seconds. As a security test we were able to drift our lab NTP

server backwards by 3 minutes and thus pulled all the clocks synced  
with

us out of whack. Any trades made would be voided. This is a sure fire
way of sending a market south. Terrorists take note!!

By using a pool of servers you almost negate the risk of deliberate
drift because it would be almost impossible to mess with all of the
servers.

To this end you should also sync your server to as many external NTP
servers as possible. Simply add multiple "server pool.ntp.org"
statements to your config file.

Mark


On Mon, 2008-12-01 at 21:30 -0600, Jose Colin wrote:

HI. one question. each time that I reboot the astlinux box. it  
appears

diferent NTP Network Session on remote and refid ? anyone know why it
appears these.
is a security breach ? or why I see each time.  diferent remote
address appears on my status.  I reboot 5 times in less than 10
minutes an each time I reboot it change the remote and refid
help with this would be aprecciate



NTP Network Sessions:

remote           refid      st t when poll reach   delay   offset   
jitter
= 
= 
= 
= 
= 
= 
= 
= 
= 
=====================================================================
ox.eicat.ca     192.12.19.20     2 u    9   64    3   98.972    
26.173   1.402



LOCAL(0)        .LOCL.          10 l    8   64    3    0.000     
0.000   0.001





Attachment:
smime.p7s

Description: S/MIME cryptographic signature


-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Astlinux-users mailing list
Astlinux-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/astlinux-users

Donations to support AstLinux are graciously accepted via PayPal to [EMAIL 
PROTECTED]






















					Reply via email to