[LACNIC/Seguridad] NTP port randomization y el Mito Maradoniano (Fwd: [Ntp] Protocol Action: 'Port Randomization in the Network Time Protocol Version 4' to Proposed Standard (draft-ietf-ntp-port-randomization-08.txt))

Fernando Gont fernando en gont.com.ar
Jue Jun 24 00:10:12 -03 2021


El IESG aprobo nuestro IETF draft sobre NTP port randomization. El
mismo se ecuentra en: 

P.S.: acontecio un 22 de Junio.... el mismo dia en que recordamos y 
celebramos como Diego Maradona trascendio el futbol haciendo arte: 

Saludos cordiales, y gracias!
Fernando Gont

-------- Forwarded Message --------
From: The IESG <iesg-secretary en ietf.org>
To: IETF-Announce <ietf-announce en ietf.org>
Cc: ntp en ietf.org, odonoghue en isoc.org, ntp-chairs en ietf.org, The IESG <
iesg en ietf.org>, ek.ietf en gmail.com, 
draft-ietf-ntp-port-randomization en ietf.org, rfc-editor en rfc-editor.org
Subject: [Ntp] Protocol Action: 'Port Randomization in the Network Time
Protocol Version 4' to Proposed Standard (draft-ietf-ntp-port-
Date: Tue, 22 Jun 2021 06:58:29 -0700

The IESG has approved the following document:
- 'Port Randomization in the Network Time Protocol Version 4'
   (draft-ietf-ntp-port-randomization-08.txt) as Proposed Standard

This document is the product of the Network Time Protocol Working

The IESG contact persons are Erik Kline and Éric Vyncke.

A URL of this Internet Draft is:

Technical Summary

    The Network Time Protocol can operate in several modes.  Some of
    these modes are based on the receipt of unsolicited packets, and
    therefore require the use of a well-known port as the local port
    number.  However, in the case of NTP modes where the use of a well-
    known port is not required, employing such well-known port
    unnecessarily increases the ability of attackers to perform blind/
    off-path attacks.  This document formally updates RFC5905,
    recommending the use of transport-protocol ephemeral port
    randomization for those modes where use of the NTP well-known port
    not required.

Working Group Summary

    There was nothing particularly noteworthy in the WG process.
Document Quality

    Many/most implementations already exhibit this behaviour.  More
    implementation text is in Section 5.


    Karen O'Donoghue is the Document Shepherd.
    Erik Kline is the Responsible Area Director.

ntp mailing list
ntp en ietf.org
Fernando Gont
Director of Information Security
EdgeUno, Inc.
PGP Fingerprint: DFBD 63E3 B248 AE79 C598 AF23 EBAE DA03 0644 1531

Más información sobre la lista de distribución Seguridad