[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Windows Time Synchronization - Best Practices

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
From: "Poof" <poof@xxxxxxxxxxxxx>
Date: Tue, 19 Oct 2004 11:45:20 -0700

Well, while this is a reaching link?

Server 1 and Server 2 have different times and some vital program becomes
open to tampering when not synced.

(Computer that controls clock-ins says that Person A clocked in an hour
before they did. Clocks get corrected and the user gets an extra hour of
work they didn't do on their paychecks... A DoS if Person A times this
correctly.)

Sorry, I suck at examples. *gets ready to delete his own email when(if) it
arrives*

~

________________________________________
From: full-disclosure-admin@xxxxxxxxxxxxxxxx
[mailto:full-disclosure-admin@xxxxxxxxxxxxxxxx] On Behalf Of Richard Stevens
Sent: Tuesday, October 19, 2004 10:22 AM
To: Bernardo Santos Wernesback; full-disclosure@xxxxxxxxxxxxxxxx
Subject: RE: [Full-Disclosure] Windows Time Synchronization - Best Practices

Why FD? What is the direct security implications of this?
 
I'm sure someone can construct a rather tenuous link, but really....

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
  - From: Richard Stevens

Prev by Date: RE: [Full-Disclosure] Enterprise Access Log Scanning Tools
Next by Date: RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
Previous by thread: RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
Next by thread: RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
Index(es):
- Date
- Thread