[LACNIC/Seguridad] Fwd: New Version Notification for draft-gont-ntp-port-randomization-01.txt

Fernando Gont fgont en si6networks.com
Mar Mayo 21 03:41:38 -03 2019 

Estimados,

FYI:
https://www.ietf.org/internet-drafts/draft-gont-ntp-port-randomization-01.txt
   (nueva revision)

Comentarios bienvenidos!

P.S.: https://www.youtube.com/watch?v=jOBjwkaW-T0

Saludos, y gracias!
GG & FG




-------- Forwarded Message --------
Subject: New Version Notification for
draft-gont-ntp-port-randomization-01.txt
Date: Mon, 20 May 2019 23:10:47 -0700
From: internet-drafts en ietf.org
To: Fernando Gont <fgont en si6networks.com>, Guillermo Gont
<ggont en si6networks.com>


A new version of I-D, draft-gont-ntp-port-randomization-01.txt
has been successfully submitted by Fernando Gont and posted to the
IETF repository.

Name:		draft-gont-ntp-port-randomization
Revision:	01
Title:		Port Randomization in the Network Time Protocol Version 4
Document date:	2019-05-20
Group:		Individual Submission
Pages:		7
URL:
https://www.ietf.org/internet-drafts/draft-gont-ntp-port-randomization-01.txt
Status:
https://datatracker.ietf.org/doc/draft-gont-ntp-port-randomization/
Htmlized:
https://tools.ietf.org/html/draft-gont-ntp-port-randomization-01
Htmlized:
https://datatracker.ietf.org/doc/html/draft-gont-ntp-port-randomization
Diff:
https://www.ietf.org/rfcdiff?url2=draft-gont-ntp-port-randomization-01

Abstract:
   The Network Time Protocol can operate in several modes.  Some of
   these modes are based on the receipt of unsolicited packets, and
   therefore require the use of a service/well-known port as the local
   port number.  However, in the case of NTP modes where the use of a
   service/well-known port is not required, employing such well-known/
   service port unnecessarily increases the ability of attackers to
   perform blind/off-path attacks, since knowledge of such port number
   is typically required for such attacks.  This document formally
   updates RFC5905, recommending the use of port randomization for those
   modes where use of the NTP service port is not required.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

Más información sobre la lista de distribución Seguridad