Microsoft updates documentation on Windows time synchronization
From: 3APA3A (3APA3A_at_SECURITY.NNOV.RU)
Date: 08/24/04
- Previous message: JV: "[Full-Disclosure] Electronic Jihad - August 26?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 24 Aug 2004 13:45:13 +0400 To: bugtraq@securityfocus.com, NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM, full-disclosure@lists.netsys.com
Dear lists,
Sorry for additional noise.
Microsoft published Q884776 "Configuring the Windows Time service
against a large time offset"
http://support.microsoft.com/default.aspx?scid=kb;en-us;884776
In addition to clear description on new registry keys in Windows 2000
SP4 and Windows 2003 Microsoft added recommendation to use hardware
time source. Design flaw is currently fixed by documentation. I hope
finally MS will implement signing at least for it's own
time.windows.com.
P.S. just to make things clear: Microsoft is one of very few vendors
who really cares about time synchronisation infrastructure security
during operation system design. Even flawed this infrastructure is
much better than any unimplemented or undocumented infrastructure.
-- http://www.security.nnov.ru /\_/\ { , . } |\ +--oQQo->{ ^ }<-----+ \ | ZARAZA U 3APA3A } You know my name - look up my number (The Beatles) +-------------o66o--+ / |/
- Previous message: JV: "[Full-Disclosure] Electronic Jihad - August 26?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
