[ntp:questions] better rate limiting against amplification attacks?

Steve Kostecke kostecke at ntp.org
Sun Dec 29 02:22:17 UTC 2013


On 2013-12-28, Terje Mathisen <terje.mathisen at tmsw.no> wrote:

> Harlan Stenn wrote:
>
>> The other ones I'd really like help with. I definitely want to see
>> the network-related bugs fixed and 2367. I'd like to see some study
>> done on 2016. I'm game to let the other ones slide.
>
> I've just gone through 2367 and I have to join Brian's side:
>
> I.e. if somebody adds NOSERVE to a client it would be perfectly fine
> to let that override PEER or anything else: NOSERVE should only
> be used on a pure end-node client, with no sideways or downstream
> communication.

This is a case of not being able to see the forest for the trees.

-- 
Steve Kostecke <kostecke at ntp.org>
NTP Public Services Project - http://support.ntp.org/



More information about the questions mailing list