dottedmag.net
Software
https://dottedmag.net/software
My contributions to open source.
blog.ntpsec.org
Version 0.9.5
http://blog.ntpsec.org/2016/11/24/version-0-9-5.html
Version 0.9.5. Nov 24, 2016. The NTPsec Project is pleased to announce the tagging of version 0.9.5. This release includes a substantial refactoring of the core protocol implementation. Due to unresolvable security issues, support for broadcast/multicast clients has been dropped; broadcast servers are still supported. Likewise, symmetric mode is now only partially supported. The. Directive has become a synonym for. All remaining Perl code in the distribution has been moved to Python. This release include...
blog.ntpsec.org
Fantastic bugs, and where to find them
http://blog.ntpsec.org/2016/12/13/fantastic-bugs-and-where-to-find-them.html
Fantastic bugs, and where to find them. Dec 13, 2016. This post, written by NTPsec’s security officer, is an assessment of two questions:. Compared to NTP Classic, where has security markedly improved? What are our worst remaining security problems? The Autokey implementation is a hairball and has been a recurring source of CVEs pertaining to crashes and buffer overflows. Many of these bugs have been exploitable even if the user has not enabled Autokey. Elimination of DDoS amplification vectors. Mode 7 p...
catb.org
GPSD Time Service HOWTO
http://www.catb.org/gpsd/gpsd-time-service-howto.html
GPSD Time Service HOWTO. Gary E. Miller gem@rellim.com , Eric S. Raymond esr@thyrsus.com. Version 2.8,. This document is mastered in asciidoc format. If you are reading it in HTML, you can find the original at the GPSD project website. GPSD, NTP and a GPS receiver supplying 1PPS (one pulse-per-second) output can be used to set up a high-quality NTP time server. This HOWTO explains the method and various options you have in setting it up. If you persistently fail to get live PPS, (1) you may have a skyvie...
visualisere.no
A take on the security news, week 47 2015
https://visualisere.no/a-take-on-the-security-news-week-47-2015.html
A take on the security news, week 47 2015. Mon 16 November 2015. A take on the security news, week 47 / 2015. I summarize some of the news that I considered noteworthy related to information security this week. Lets encrypt beta soon, free dnssec, bad barcode, malware using steganography and amazon now offering two-factor authentication. Lets encrypt public beta to launch in desember. Service. The limited beta that has been running since 12.september 2015 has already issued 11.000 free SSL. Leveraging th...
blog.ntpsec.org
Announcing the Third Annual NTPsec F2F meeting
http://blog.ntpsec.org/2017/01/04/announce-f2f.html
Announcing the Third Annual NTPsec F2F meeting. Jan 4, 2017. This is well-in-advance notice of the NTPsec team’s third annual face-to-face meeting, intended so you all can mark your calendars. It will be held sometime during Penguicon 2017. April 28th-30th 2017, near Detroit, Michigan, USA. The previous meetings have been both productive and a lot of fun - there is much to be said for giving everyone involved opportunities to hang out together in a relaxed atmosphere before and after. The blog for the NT...
blog.ntpsec.org
About
http://blog.ntpsec.org/about
Welcome to the NTPsec Project development blog - a blog about developing and using NTPsec. NTPsec is a secure, hardened, and improved implementation of Network Time Protocol derived from NTP Classic, Dave Mills’s original. NTPsec, as its name implies, is a more secure NTP. Our goal is to deliver code that can be used with confidence in deployments with the most stringent security, availability, and assurance requirements. One of our goals is to support broader community participation.
blog.ntpsec.org
Version 0.9.6
http://blog.ntpsec.org/2016/12/30/version-0-9-6.html
Version 0.9.6. Dec 30, 2016. The NTPsec Project is pleased to announce the tagging of version 0.9.6. Has been moved from C to Python. This is not a functional change, just another move to improve maintainability and reduce attack surface by decreasing line count. A new tool for time-service operators,. Supports real-time monitoring of your NTP installation’s status. As always, you can download the release tarballs with sums and signatures from ftp:/ ftp.ntpsec.org/pub/releases/.
blog.ntpsec.org
Down On The Test Farm
http://blog.ntpsec.org/2016/12/07/down-on-the-test-farm.html
Down On The Test Farm. Dec 7, 2016. Testing any software suite as complex as NTPsec is difficult. The intrinsically time-varying quality of NTP’s operation makes it much more so. In some future post I’ll probably write about my only real failure on this project, an attempt to enable time-invariant replay testing that failed for specific technical reasons very peculiar to NTP. Figure 1. The Official Windowsill of Mad Science. Why Raspberry Pis, rather than more conventional PCs or VMs somewhere? Another r...
blog.ntpsec.org
Less Is More: Stripping Down NTP
http://blog.ntpsec.org/2016/11/29/less-is-more.html
Less Is More: Stripping Down NTP. Nov 29, 2016. Hello all, I’m Eric S. Raymond, the project’s tech lead and principal coder. Welcome to the blog, where (among other goals) we’re going to share what we’ve learned while working on this project. Ken Thompson, the principal inventor of the Unix operating system, famously said "One of my most productive days was throwing away 1,000 lines of code." And here at the NTPsec project there is nothing we like doing more than following Ken’s example. We remove 164KLO...
SOCIAL ENGAGEMENT