Secure NTP with NTS

Many computers use the Network Time Protocol NTP to synchronize their system clocks over the internet. NTP is one of the few unsecured internet protocols still in common use. An attacker that can observe network traffic between a client and server can feed the client with bogus data and depending on the client8217s implementation and configuration force it to set its system clock to any time and date. Some programs and services might not work if the client8217s system clock is not accurate. For example a web browser will not work correctly if the web servers8217 certificates appear to be expired according to the client8217s system clock. Use Network Time Security NTS to secure NTP.

Fedora 331 is the first Fedora release to support NTS. NTS is a new authentication mechanism for NTP. It enables clients to verify that the packets they receive from the server have not been modified while in transit. The only thing an attacker can do when NTS is enabled is drop or delay packets. See RFC8915 for further details about NTS.

...

Read Full Post

News Link: https://fedoramagazine.org/secure-ntp-with-nts/.
RSS Link: https://fedoramagazine.org/feed/.

Linux Chatter is a news aggregator service that curates some of the best Linux, Cloud, Technical Guides, Hardware and Security news. We display just enough content from the original post to spark your interest. If you like the topic, then click on the 'read full post' button to visit the author's website. Use Linux Chatter to find content from amazing authors!

Note: The content provided has been modified and is not displayed as intended by the author. Any trademarks, copyrights and rights remain with the source.

Disclaimer: Linux Chatter sources content from RSS feeds and personal content submissions. The views and opinions expressed in these articles are those of the authors and do not necessarily reflect those of Linux Chatter.