NTP BUG 2935: Deja Vu: Replay attack on authenticated broadcast mode
Last update: February 15, 2022 20:59 UTC (43fbd379b)
If an NTP network is configured for broadcast operations, then either a man-in-the-middle attacker or a malicious participant that has the same trusted keys as the victim can replay time packets.
- Implement BCP-38.
- Upgrade to 4.2.8p6 or later.
- If you are unable to upgrade:
- Don’t use broadcast mode if you cannot monitor your client servers.
- Monitor your
This weakness was discovered by Aanchal Malhotra of Boston University.