Share this page!

Maybe Scrolly?
؜ Profile picture
Twitter logo
May 1 17 tweets 18 min read
3 of 60 days before the new @IndianCERT poiicy comes into effect.

And nobody seems to have tried to use these NTP servers that are supposed to provide reliable and secure time service to the whole country...
@IndianCERT Not just the whole country, even MNCs with infra in other countries need to rely on these servers because...

"it is to be ensured that their time source shall not deviate from NPL and NIC"

From cert-in.org.in/PDF/CERT-In_Di… Image
@IndianCERT The National Informatics Centre @NICMeity NTP server is pretty much impossible to find.

Searching for "NTP" or "NTP Server" on all nic.in sites shows nothing except some old magazine articles that they've archived in their "library"(which BTW doesn't use HTTPS) ImageImageImageImage
Searching for "Network Time Server" on nic.in sites throws up some Directorate of Coordination Police Wireless and Indian Navy tenders/handbooks and even NCERT textbooks.

*NOTHING* about these all important NTP servers that the whole country is supposed to use. ImageImageImageImage
National Physical Laboratory @CSIR_NPL has relatively easy to find page for their NTP servers.

nplindia.in/clockcode/html…

And this gimmicky clock page which would have been cool in the 90s but doesn't account for 21st century browser privacy settings.

nplindia.in/clockcode/html… Image
So we now have one of the two recommended NTP servers the nation is supposed to use - time.nplindia.org

Let's try guessing the other NTP server...

There's a DNS entry for ntp.nic.in but it doesn't work! #DigtialIndia Image
These NTP servers are IPv4 only. There are no AAAA records.

So if your infra is on IPv6 you cannot sync with these time servers. Image
Guess @CSIR_NPL and @NICMeity aren't taking the @DoT_India IPv6 transition timeline seriously because they have been constantly kicked down the road for many many years now.

Let's see what happens on 30th June.

dot.gov.in/sites/default/… Image
Oh well forget IPv6...

2 out of 3 of @CSIR_NPL's NTP servers are down!

And if ntp.nic.in is the @NICMeity NTP server, that is down too.

Effectively 3 out of 4 NTP server IPs that the country is supposed to use are unusable. #DigitalIndia #FAIL Image
@CSIR_NPL @NICMeity If this stupid #AtmanirbharNPT rule was implemented at present...

The whole country's NTP traffic would be directed to just one IP address - 14.139.60.102

(And no it isn't anycasted.)

Image
@CSIR_NPL @NICMeity Also these are the 3 @CSIR_NPL NTP servers

14.139.60.107
14.139.60.106
14.139.60.102

All of them are on the same NKN /24 subnet.

A subset of which has been assigned to NPL. ImageImage
@CSIR_NPL @NICMeity Detailed @CSIR_NPL NTP server status...

14.139.60.106 - Unresponsive.

14.139.60.107 - Unreachable!(Machine powered off?)

15:36:07.646780 IP 14.139.60.97 > 192.168.1.4: ICMP host 14.139.60.107 unreachable, length 84

14.139.60.102 - Up & Running.
#DigitalIndia Image
@CSIR_NPL @NICMeity The routing to all 4 IP addresses seems to be a mess too.

Traffic from an Airtel IP to NKN/NPL goes via Jio.

Does NKN not peer with NIXI?

How much is Jio being paid for this transit?

Traceroute to 14.139.60.102 Image
@CSIR_NPL @NICMeity Traffic from Airtel IP to @NICMeity's ntp.nic.in also transits Jio.

Last hop - 49.44.220.188

inetnum: 49.32.0.0 - 49.47.255.255
netname: RELIANCEJIO-IN
descr: Reliance Jio Infocomm Limited
country: IN
org: ORG-RJIL1-AP Image
Thanks to a Twitter troll, I had to stop being lazy and look up National Knowledge Network/ NKN's peers and upstreams.

Jio has indeed landed a monopoly of sorts as the only ISP peer/upstream for the
NKN INTERNET GATEWAY NETWORK.

bgp.tools/as/9885#connec… ImageImage
The official FAQ has finally made @NICMeity's NTP servers public. (h/t @ncrguys)

samay1.nic.in 164.100.255.122

samay2.nic.in 164.100.255.123

Why couldn't they just have samay.nic.in pointing to the 2 IPs is beyond me.

Also #stopHindiImposition? Image
Also @NICMeity's NTP server name that I had discovered and wasn't functional/responding when the rules were released. ntp.nic.in has been updated and points to samay1.nic.in IP.

So it wasn't some secure/secret/private NTP server.
Image

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with ؜

؜ Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @kingslyj

؜ Profile picture
Mar 18
This is why @Zomato is forcing people to theit app.

Your personal data that they grab from your phone is far more valuable to them than the money they charge you(delivery fees/subscriptions) for using their services and the huge cut from the restaurants. #SurveillanceCapitalism
@zomato The @zomato share price is down nearly 50% from their all time high and they need to increase their earnings to prevent it from going even lower and that's not going to happen from just selling food, so it's time to monetise their customers' personal data.
@zomato From @Zomato's privacy policy...

zomato.com/policies/priva…
Read 14 tweets
؜ Profile picture
May 28, 2021
Billionaire gatekeeping vaccines...

Translation: "You filthy plebs! Keep away from my ivory tower!"
So @rssharma3 has enabled "secret" vaccination centres for billionaires and their corporations on CoWIN that will not show up on the portal and the idiots at @Bioconlimited missed the toggle and made it public?

After building a portal that has left millions desperately hunting for slots, typing OTPs and solving CAPTCHAs. people who won vax-lottery are being denied vaccine because @rssharma3 is taking appointment cancellation instructions from a billionaire.

Read 4 tweets
؜ Profile picture
Feb 9, 2021
I was under the assumption that one of the few things govts were getting right was rooftop solar power and net metering.

Boy was I wrong.
Parents want to install an AC for the summer and I suggested exploring rooftop solar to go with it so that they don't have to worry about electricity bills and the upfront expense will be recouped in electricity bill savings in a few years.
Only to discover it's a rigged system designed to exploit customers rather than meet renewable energy goals/climate change commitments.
Read 13 tweets
؜ Profile picture
Feb 6, 2021
What you see on the form is only one part of the story.

**ALL KYC data** provided to **ALL** banks in India including photographs an PoI/PoI ID copies/scans are being uploaded to a central server.

ckycindia.in/ckyc/

cc: @SatpathyLive
And the central server also allows banks to **DOWNLOAD** the documents uploaded by other banks. Image
Read 7 tweets
؜ Profile picture
Nov 17, 2020
When was the last time so many banks disappeared in 6 years?

en.wikipedia.org/wiki/Category:…
1st April 2017

State Bank of Bikaner and Jaipur, State Bank of Hyderabad, State Bank of Mysore, State Bank of Patiala, State Bank of Travancore and the Bharatiya Mahila Bank >> SBI.

1st April 2019

Dena Bank and Vijaya Bank >> Bank of Baroda.
1st April 2020

Corporation Bank and Andhra Bank >> Union Bank of India.

Oriental Bank of Commerce and United Bank of India >> Punjab National Bank.

Allahabad Bank >> Indian Bank

Syndicate Bank >> Canara Bank
Read 6 tweets
؜ Profile picture
Sep 3, 2020
Time Capsule
#PreDigitalIndia
Two more airlines that don't exist anymore.
Read 13 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(