Comment 9 for bug 104525
Revision history for this message
| Perry E. Metzger (perry-piermont) wrote Re: [Bug 104525] Re: default ntp.conf should use pool.ntp.org servers | #9 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)
Inkwina <email address hidden> writes:
> In any case the concern with anonymous servers is not dissimilar from that
> wit anonymous mirrors.
It is quite dissimilar, in that an anonymous mirror (where you didn't
check the signatures) could take over your machine. There is no
evidence an anonymous bad actor controlling one of several clocks you
are reading could take over your machine -- even if he controlled all
the clocks, he could probably not take over your machine.
> If your security requirements are that stringent, you should be running your
> own stratum 1 ntpd (a gps reciever does not cost that much).
GPS signals can be externally corrupted with an appropriate
transmitter as well. There is no actual way to prove you have the
correct time. (This is one reason very few protocols require accurate
timekeeping for security.)
--
Perry E. Metzger <email address hidden>