[ntp:questions] better rate limiting against amplification attacks?

Harlan Stenn stenn at ntp.org
Thu Jan 16 22:45:24 UTC 2014

David Lord writes:
> I have "restrict -4 limited kod nomodify notrap nopeer noquery"
> I've not checked most recent docs but thought "limited" was
> needed for "kod".

It is.

> There were also some posts indicating that "kod" could be
> counter productive leading to self inflicted DOS.

I'd love to learn more about this.  I can only see this happening if one
has a seriously broken client.


More information about the questions mailing list