On 3/30/2020 1:27 AM, Saku Ytti wrote:
On Mon, 30 Mar 2020 at 11:15, Harlan Stenn <stenn@nwtime.org> wrote:
Please help me understand this.
Exactly how bad is it if the query and response packets are of a different size? Does it matter at 4 bytes? 32?
Presumably, if it's attenuation vector (1byte or more), presumably attacker will use any of the other many vectors which are amplification vectors or will directly attack from the zombie machines they pwn. Since NST would have negative ROI on attack if there is _any_ attenuation.
OK, and exactly how bad is a single byte attenuation, when compared against the cost of 100% of all of the 1-byte shorter NTP packets being made bigger to make the attenuation vector 0? -- Harlan Stenn <stenn@nwtime.org> http://networktimefoundation.org - be a member!