10 May
2016
10 May
'16
4:18 p.m.
On May 10, 2016, at 3:58 PM, Gary E. Miller <gem@rellim.com> wrote:
I'm sure there are many more examples, but likely you can no longer log in, via SSH or HTTPS, and your iPhone is dead. I think any of those would qualify as more than an annoyance.
An unnamed vendor has code where if the clock on their router is not set SSH won’t work as the crypto package signature says the package isn’t valid. Many of the not-before and not-after certificate systems have some fairly serious issues. https://www.cs.bu.edu/~goldbe/pub-index.html#NTP is one place to start when it comes to on-path and off-path NTP attacks that can skew clocks. - jared