[ previous ] [ next ] [ threads ]
 
 From:  Richard Morrell <dick at dickmorrell dot com>
 To:  Brandon Holland <brandon at cookssaw dot com>
 Cc:  'fisch' <fisch at conne dash island dot de>, m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] Feature request which would make m0n0wall even better ;)
 Date:  Sat, 24 Jan 2004 20:46:12 +0000 (GMT) 
On Sat, 24 Jan 2004, Brandon Holland wrote:

> Nope, it doesn't fisch.  I'm behind some of the other brains (like how I
> add myself into words and thoughts to hautily lift myself up? :) )
> behind the fact that unnecessary complexity reduces security.
> 
> I've read where - even with NTP as simple in concept as it is, it's a
> potential security hole!

Personally.... I think NTP on a firewall is pointless. You don't find 
Sonicwall, Watchguard, Checkpoint doing it. Any NAT'ing firewall will 
allow you to use any one of 30000 public NTP servers so whats the issue ?