[LACNIC/Seguridad] Fwd: [Ntp] I-D Action: draft-ietf-ntp-port-randomization-06.txt

Fernando Gont fgont en si6networks.com
Mar Sep 15 09:32:49 GMT+3 2020


Title: "Port Randomization in the Network Time Protocol Version 4"

FYI: https://tools.ietf.org/html/draft-ietf-ntp-port-randomization

Comentarios/reviews bienvenidas.

P.S.: Se recomienda el maridar con 

Saludos cordiales,
(G., F.) Gont

-------- Forwarded Message --------
Subject: [Ntp] I-D Action: draft-ietf-ntp-port-randomization-06.txt
Date: Tue, 15 Sep 2020 04:25:44 -0700
From: internet-drafts en ietf.org
Reply-To: ntp en ietf.org
To: i-d-announce en ietf.org
CC: ntp en ietf.org

A New Internet-Draft is available from the on-line Internet-Drafts 
This draft is a work item of the Network Time Protocol WG of the IETF.

         Title           : Port Randomization in the Network Time 
Protocol Version 4
         Authors         : Fernando Gont
                           Guillermo Gont
                           Miroslav Lichvar
	Filename        : draft-ietf-ntp-port-randomization-06.txt
	Pages           : 10
	Date            : 2020-09-15

    The Network Time Protocol can operate in several modes.  Some of
    these modes are based on the receipt of unsolicited packets, and
    therefore require the use of a well-known port as the local port
    number.  However, in the case of NTP modes where the use of a well-
    known port is not required, employing such well-known port
    unnecessarily increases the ability of attackers to perform blind/
    off-path attacks.  This document formally updates RFC5905,
    recommending the use of transport-protocol ephemeral port
    randomization for those modes where use of the NTP well-known port is
    not required.

The IETF datatracker status page for this draft is:

There are also htmlized versions available at:

A diff from the previous version is available at:

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:

ntp mailing list
ntp en ietf.org

Más información sobre la lista de distribución Seguridad