Security aspects of time synchronization infrastructure

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Security aspects of time synchronization infrastructure
From: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>
Date: Fri, 20 Aug 2004 01:25:38 +0400
Cc: full-disclosure@xxxxxxxxxxxxxxxx
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: www.security.nnov.ru
Reply-to: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>

Hello bugtraq,

  I    published   whitepaper   called   "Security   aspects   of   time
  synchronization  infrastructure".  It  describes  some observations on
  very  common  security  flaws  in  time synchronization infrastructure
  design, including (but not limited to) MS Windows Active Directory.

  http://www.security.nnov.ru/advisories/timesync.asp

  Any comments are very appreciated.

-- 
/3APA3A

Prev by Date: Immunity, Inc. Release: libdisassemble
Next by Date: Vulnerabilities in Merak Webmail Server.
Previous by thread: Immunity, Inc. Release: libdisassemble
Next by thread: Re[2]: [Full-Disclosure] Security aspects of time synchronization infrastructure
Index(es):
- Date
- Thread