All posts by Steven Sommars

Partial NTP Pool: The leap second that wasn’t

2022-04-19NTPBug, fail, Guest Post, leap second, LeoNTP, NTP, NTP Pool ProjectSteven Sommars

An analysis of some falsified leap second warnings that appeared in November 2021 on public NTP servers out of the NTP Pool Project.

Continue reading Partial NTP Pool: The leap second that wasn’t →

FortiGate bug: firewalls sending excessive requests to the NTP Pool

2020-11-24Fortinet, NTPBug, fail, FortiGate, Fortinet, Guest Post, NTP, NTP Pool ProjectSteven Sommars

The NTP Pool is a volunteer organization that provides time synchronization service to hundreds of millions of computers worldwide. A typical client might query a particular NTP Pool server ~10-60 times/hour. Wikipedia lists some abusive clients that far exceeded the normal rate. This wastes NTP server resources, may interfere with other clients, and can trigger DDoS protections. In late 2019, a software update made some FortiGate firewalls very unfriendly to the NTP Pool.

Continue reading FortiGate bug: firewalls sending excessive requests to the NTP Pool →

NTP Filtering (Delay & Blockage) in the Internet

2020-09-07NTPCongestion, DDoS, Guest Post, Internet, ISP, NTP, NTP Filtering, NTP Pool Project, timeSteven Sommars

NTP (Network Time Protocol) messages are sometimes rate-limited or blocked entirely by Internet operators. This little-known “NTP filtering” was put into place several years ago in response to DDoS (Distributed Denial of Service) attacks. NTP filtering may drop NTP messages based on rate or message size. Let’s dig into it: Continue reading NTP Filtering (Delay & Blockage) in the Internet →

Weberblog.net

IT-Security, Networks, IPv6, VPN, DNSSEC, NTP

All posts by Steven Sommars

Partial NTP Pool: The leap second that wasn’t

FortiGate bug: firewalls sending excessive requests to the NTP Pool

NTP Filtering (Delay & Blockage) in the Internet