[LACNIC/Seguridad] NTP port randomization y el Mito Maradoniano (Fwd: [Ntp] Protocol Action: 'Port Randomization in the Network Time Protocol Version 4' to Proposed Standard (draft-ietf-ntp-port-randomization-08.txt))

Fernando Gont fernando en gont.com.ar
Jue Jun 24 00:10:12 -03 2021


Estimados/as,

El IESG aprobo nuestro IETF draft sobre NTP port randomization. El
mismo se ecuentra en: 
https://datatracker.ietf.org/doc/html/draft-ietf-ntp-port-randomization

P.S.: acontecio un 22 de Junio.... el mismo dia en que recordamos y 
celebramos como Diego Maradona trascendio el futbol haciendo arte: 
https://www.youtube.com/watch?v=jOz2uGMTA2w

Saludos cordiales, y gracias!
Fernando Gont




-------- Forwarded Message --------
From: The IESG <iesg-secretary en ietf.org>
To: IETF-Announce <ietf-announce en ietf.org>
Cc: ntp en ietf.org, odonoghue en isoc.org, ntp-chairs en ietf.org, The IESG <
iesg en ietf.org>, ek.ietf en gmail.com, 
draft-ietf-ntp-port-randomization en ietf.org, rfc-editor en rfc-editor.org
Subject: [Ntp] Protocol Action: 'Port Randomization in the Network Time
Protocol Version 4' to Proposed Standard (draft-ietf-ntp-port-
randomization-08.txt)
Date: Tue, 22 Jun 2021 06:58:29 -0700

The IESG has approved the following document:
- 'Port Randomization in the Network Time Protocol Version 4'
   (draft-ietf-ntp-port-randomization-08.txt) as Proposed Standard

This document is the product of the Network Time Protocol Working
Group.

The IESG contact persons are Erik Kline and Éric Vyncke.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-ntp-port-randomization/





Technical Summary

    The Network Time Protocol can operate in several modes.  Some of
    these modes are based on the receipt of unsolicited packets, and
    therefore require the use of a well-known port as the local port
    number.  However, in the case of NTP modes where the use of a well-
    known port is not required, employing such well-known port
    unnecessarily increases the ability of attackers to perform blind/
    off-path attacks.  This document formally updates RFC5905,
    recommending the use of transport-protocol ephemeral port
    randomization for those modes where use of the NTP well-known port
is
    not required.

Working Group Summary

    There was nothing particularly noteworthy in the WG process.
Document Quality

    Many/most implementations already exhibit this behaviour.  More
    implementation text is in Section 5.

Personnel

    Karen O'Donoghue is the Document Shepherd.
    Erik Kline is the Responsible Area Director.


_______________________________________________
ntp mailing list
ntp en ietf.org
https://www.ietf.org/mailman/listinfo/ntp
-- 
Fernando Gont
Director of Information Security
EdgeUno, Inc.
PGP Fingerprint: DFBD 63E3 B248 AE79 C598 AF23 EBAE DA03 0644 1531






Más información sobre la lista de distribución Seguridad