[tor-dev] Proposal 222: Stop sending client timestamps
Maxim Kammerer
mk at dee.su
Thu Aug 22 19:14:43 UTC 2013
On Thu, Aug 22, 2013 at 6:46 PM, Nick Mathewson <nickm at torproject.org> wrote:
> Despite this late date, many hosts aren't running NTP and
> don't have very well synchronized clocks. Even more hosts
> aren't running a secure NTP; it's probably easy to
> desynchronize target hosts.
Not strongly related to the proposal, but authenticated (autokey) NTP
is not really secure.
http://tools.ietf.org/html/draft-ietf-ntp-network-time-security
http://www.innovationslab.net/~brian/NTP/autokey-analysis.pdf
--
Maxim Kammerer
Liberté Linux: http://dee.su/liberte
More information about the tor-dev
mailing list