Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
What is sntp?
The sntp npm package is a simple Network Time Protocol (NTP) client for Node.js. It allows you to synchronize your system time with NTP servers, ensuring accurate timekeeping for your applications.
What are sntp's main functionalities?
Time Synchronization
This feature allows you to request the current time from an NTP server. The code sample demonstrates how to use the sntp package to get the current time from 'pool.ntp.org' and log it to the console.
const Sntp = require('sntp');
// Request the current time from an NTP server
Sntp.time({ host: 'pool.ntp.org', port: 123 }, (err, time) => {
if (err) {
console.error('Failed to get time:', err);
return;
}
console.log('Current time:', new Date(time.now));
});Custom NTP Server
This feature allows you to specify a custom NTP server to synchronize time with. The code sample shows how to get the current time from 'time.google.com' and log it to the console.
const Sntp = require('sntp');
// Request the current time from a custom NTP server
Sntp.time({ host: 'time.google.com', port: 123 }, (err, time) => {
if (err) {
console.error('Failed to get time:', err);
return;
}
console.log('Current time from custom server:', new Date(time.now));
});Time Offset
This feature allows you to calculate the time offset between your system time and the NTP server time. The code sample demonstrates how to get the time offset from 'pool.ntp.org' and log it to the console.
const Sntp = require('sntp');
// Request the current time and calculate the offset
Sntp.time({ host: 'pool.ntp.org', port: 123 }, (err, time) => {
if (err) {
console.error('Failed to get time:', err);
return;
}
console.log('Time offset:', time.t);
});Other packages similar to sntp
ntp-client
The ntp-client package is another NTP client for Node.js. It provides similar functionality to sntp, allowing you to synchronize your system time with NTP servers. However, ntp-client offers a simpler API and is easier to use for basic time synchronization tasks.
ntp-time
The ntp-time package is a Node.js module for retrieving the current time from NTP servers. It offers similar functionality to sntp, with a focus on providing accurate timekeeping for applications. It is a good choice if you need a reliable NTP client with minimal configuration.
sntp
An SNTP v4 client (RFC4330) for node. Simpy connects to the NTP or SNTP server requested and returns the server time
along with the roundtrip duration and clock offset. To adjust the local time to the NTP time, add the returned t offset
to the local time.
Usage
var Sntp = require('sntp');
// All options are optional
var options = {
host: 'nist1-sj.ustiming.org', // Defaults to pool.ntp.org
port: 123, // Defaults to 123 (NTP)
resolveReference: true, // Default to false (not resolving)
timeout: 1000 // Defaults to zero (no timeout)
};
// Request server time
const exec = async function () {
try {
const time = await Sntp.time(options);
console.log('Local clock is off by: ' + time.t + ' milliseconds');
process.exit(0);
}
catch (err) {
console.log('Failed: ' + err.message);
process.exit(1);
}
};
exec();
If an application needs to maintain continuous time synchronization, the module provides a stateful method for querying the current offset only when the last one is too old (defaults to daily).
// Request offset once
const exec = async function () {
const offset1 = await Sntp.offset();
console.log(offset1); // New (served fresh)
// Request offset again
const offset2 = await Sntp.offset();
console.log(offset2); // Identical (served from cache)
};
exec();
To set a background offset refresh, start the interval and use the provided now() method. If for any reason the client fails to obtain an up-to-date offset, the current system clock is used.
var before = Sntp.now(); // System time without offset
const exec = async function () {
await Sntp.start();
var now = Sntp.now(); // With offset
Sntp.stop();
};
exec();
FAQs
SNTP Client
The npm package sntp receives a total of 1,805,629 weekly downloads. As such, sntp popularity was classified as popular.
We found that sntp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 03 Nov 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024