Linked by Thom Holwerda on Sun 9th Apr 2006 12:49 UTC, submitted by rycamor
Legal FreeBSD developer Poul-Henning Kamp (PHK) happens to run a tier-1 NTP server, intended only for use by ISPs' main servers in Denmark, and specifically not intended for individual client connections, not to mention client connections from anywhere else in the world. He offers this service pro bono to ISPs. Unfortunately, D-Link has decided to abuse the open nature of the NTP protocol and has actually hard-coded PHK's server hostname in the firmware of several of their home network products. Since contacting D-Link yielded no results, PHK went public.
Permalink for comment 113098
To read all comments associated with this story, please click here.
by Morin on Sun 9th Apr 2006 13:52 UTC
Member since:

I think he has the option to use force if nothing else succeeds:

Step 1: Whitelist the allowed connections and ban everything else. This is probably not enough since the connection attempts will still block his network and server.

Step 2: Whitelist the allowed connections and send *incorrect* time stamps to all others. As it sounds, D-Link has little legal ground to expect correct timestamps. Many people will wonder why their D-Link products suddenly screw up.

Step 3: Ask the danish ISPs for help, explaining them that he cannot continue with the server if nothing changes.

Step 4: Shut down the server, and wait for reactions.

Reply Score: 5