Hi I'm wondering if the ntp protocol that operates mainly in UDP can be used on a firewall server (to syncronise logfiles) or if it is too insecure.
The only information useable for "security" seems, according to ethereal, the originate time stamp which means that an attacker has to be very fast to read this and send an own, faked packet faster than the original asked server. What would you recommend as time syncroniser on a firewall? (No big-company thing that would be worth to buy an DCF77 clock for it's own, just a fun project...) bye, -christian- -- Christian Hammers WESTEND GmbH - Aachen und Dueren Tel 0241/701333-0 [email protected] Internet & Security for Professionals Fax 0241/911879 WESTEND ist CISCO Systems Partner - Premium Certified
