[ntp:questions] notrust alternative?

Ronan Flood ronan at noc.ulcc.ac.uk
Mon Nov 6 14:43:24 UTC 2006


On Sun, 05 Nov 2006 05:17:03 +0000, "David L. Mills" <mills at udel.edu> wrote:

> All users: Don't put "disable auth" in your configuration file unless 
> you understand the resulting vulnerability and your network cannot be 
> connected to the public Internet under any circumstances. Also, make 
> sure the Linux and FreeBSD and others do not provide NTP software with 
> that switch disabled.

Also check that ntpd is not started with the -A option, which is another
way of disabling authentication.

-- 
                      Ronan Flood <R.Flood at noc.ulcc.ac.uk>
                        working for but not speaking for
             Network Services, University of London Computer Centre
     (which means: don't bother ULCC if I've said something you don't like)




More information about the questions mailing list