[ntp:hackers] What does "interface listen wildcard" do?

Danny Mayer mayer at ntp.org
Fri Jul 12 21:51:08 UTC 2013


On 7/12/2013 3:52 PM, Philip Prindeville wrote:
> 
> On Jul 12, 2013, at 6:03 AM, Brian Utterback <brian.utterback at oracle.com> wrote:
> 
>> On 7/12/2013 11:59 AM, Danny Mayer wrote:
>>> It's not as simple as that. Admins want to make sure that NTP clients
>>> don't try that address for NTP packets. They actually want it to return
>>> "refused" so that those clients don't try. Accepting and dropping
>>> packets means that something is accepting the packets. Dropping them is
>>> not the same thing at all.
>>
>> As I pointed out, we listen on the wildcard address now, by default. We don't refuse them, we drop them right now.
>>
>> Brian Utterback
> 
> 
> You can't refuse the packet: it's a stateless connection.
> 

Exactly. That was my point.

Danny



More information about the hackers mailing list