[ntp:questions] Bad NTP servers jeopardizing the pool.ntp.org initiative
thomas at Hax.SE
Sat Mar 24 22:52:32 UTC 2007
mayer at ntp.isc.org (Danny Mayer) writes:
> Thomas Tornblom wrote:
> If I understand correctly what you are asking what we need here instead
> of the server line, we should have a pool line and and an exclude line
> to ignore any specific IP addresses that we don't want to use. I'm
> suggesting that the exclude line can be used separately since you don't
> want them anywhere used. So for example you would want to do something
> like this:
> exclude 126.96.36.199 netmask 255.255.255.0
> exclude 188.8.131.52
> pool se.europe.pool.ntp.org max 5
No, what I'm asking for is that anyone that is participating the pool
initiative should be required to accept connections from any
reasonable client, and specifically not be allowed to filter out
traffic from a large ISP just because they acted as asses 20 years ago.
Having an "exclude" option is a band-aid solution to this problem.
> (pool is coming, exclude I just made up for this message).
> The exclude lines would exclude all IP addresses in 1.2.3.* and 184.108.40.206.
> This is different from a restrict line since it would automatically not
> allow those addresses to be used as servers and peers.
> If this is what fits the bill, please enter a bug item in bugzilla with
> these details.
> questions mailing list
> questions at lists.ntp.isc.org
More information about the questions