RE: Open Letter to D-Link about their NTP vandalism - Test - lists.nanog.org

newer
New BGP noise analysis

RE: Open Letter to D-Link about their NTP vandalism

older
Kind of an odd contact request....

David Hubbard

7 Apr 2006 7 Apr '06

6:20 p.m.

From: Rubens Kuhl Jr.

It still would require him to answer the DNS requests. Only way to addres that is everybody outside DIX declare gps.dix.de as www.dlink.com in their resolvers.

How about serve back bogus NTP data to non-BIX customer prefixes? Maybe if people's computers start setting themselves to the year 2004 D-Link will do something. :-) Dave

Reply

Sign in to reply online Use email software

Show replies by date

Todd Vierling

7 Apr 7 Apr

6:31 p.m.

New subject: Open Letter to D-Link about their NTP vandalism

On Fri, 7 Apr 2006, David Hubbard wrote:

How about serve back bogus NTP data to non-BIX customer prefixes? Maybe if people's computers start setting themselves to the year 2004 D-Link will do something. :-)

Perhaps return back a time value that is ~10 seconds from wrapping around? Where "wrapping" depends on the size of a time value in the device's OS. (Note that if the devices crash because of bad input, I can hardly see that as legally actionable, since the devices never had the permission to use the data source in the first place. ;) -- -- Todd Vierling <tv@duh.org> <tv@pobox.com> <todd@vierling.name>

Reply

Sign in to reply online Use email software

up＠3.am

8 Apr 8 Apr

11:26 a.m.

New subject: Open Letter to D-Link about their NTP vandalism

On Fri, 7 Apr 2006, Todd Vierling wrote:

On Fri, 7 Apr 2006, David Hubbard wrote:

...
How about serve back bogus NTP data to non-BIX customer prefixes? Maybe if people's computers start setting themselves to the year 2004 D-Link will do something. :-)

Perhaps return back a time value that is ~10 seconds from wrapping around? Where "wrapping" depends on the size of a time value in the device's OS.

(Note that if the devices crash because of bad input, I can hardly see that as legally actionable, since the devices never had the permission to use the data source in the first place. ;)

Don't count on that. If you set a bear trap inside your front door, and a burglar injures himself because of it, you can be held liable, at least in most US states. Dunno about .dk. James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am =========================================================================

Reply

Sign in to reply online Use email software

goemon＠anime.net

7 Apr 7 Apr

8:21 p.m.

New subject: Open Letter to D-Link about their NTP vandalism

On Fri, 7 Apr 2006, David Hubbard wrote:

...
It still would require him to answer the DNS requests. Only way to addres that is everybody outside DIX declare gps.dix.de as www.dlink.com in their resolvers. How about serve back bogus NTP data to non-BIX customer

From: Rubens Kuhl Jr. prefixes? Maybe if people's computers start setting themselves to the year 2004 D-Link will do something. :-)

yeah, d-link would probably sue DIX. -Dan

Reply

Sign in to reply online Use email software

6838

Age (days ago)

6839

Last active (days ago)

Download

3 comments

4 participants

tags

participants (4)

David Hubbard
goemon＠anime.net
Todd Vierling
up＠3.am