| JP Vossen on 12 Sep 2016 07:46:12 -0700 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| Re: [PLUG] Possible talk on NTPsec? |
+1 On 09/12/2016 10:18 AM, Will wrote:
I know there has been interest previously in hearing about NTP-sec. I
guess the question isn't "if" but "when".
On Sep 12, 2016 9:52 AM, "Tom Hornberger" <tom.hornberger@verizon.net
<mailto:tom.hornberger@verizon.net>> wrote:
I'd like to hear about it. PLUG West conveniently lacks a scheduled
topic on the19th! :)
Tom
-----Original Message-----
From: Eric S. Raymond <esr@thyrsus.com <mailto:esr@thyrsus.com>>
To: plug <plug@lists.phillylinux.org
<mailto:plug@lists.phillylinux.org>>
Sent: Mon, Sep 12, 2016 9:48 am
Subject: [PLUG] Possible talk on NTPsec?
It's been many years since I gave a PLUG talk. Now I have a topic I'd
like to raise awareness of.
I've spent the last 18 months leading a project called NTPsec, a
massive cleanup and refactoring of the Internet time-service daemon
code intended among other things to seriously improve security; the
reference implementation we forked from is notoriously vulnerable to use
as a DDoS amplifier.
The story of NTPsec has some useful lessons about writing
low-defect-rate code, reduction of attack surface as a security
strategy, and the underappreciated impact of Unix API standardization.
The project is at https://www.ntpsec.org/
Later, JP -- ------------------------------------------------------------------- JP Vossen, CISSP | http://www.jpsdomain.org/ | http://bashcookbook.com/ ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug