Disabling Network Time Protocol

Network Time Protocol (NTP) is not especially dangerous, but any unneeded service may represent a path for penetration. If NTP is actually used, it is important to explicitly configure a trusted time source and to use proper authentication, because corrupting the time base is a good way to subvert certain security protocols. If NTP is not being used on a particular router interface, you can disable it with the no ntp enable interface command. One security risk of NTP is that it can be altered as a method of subverting security protocols and can compromise logging information. This is the primary reason for disabling NTP if it is not in use.

0 0

Post a comment