[ntp:questions] better rate limiting against amplification attacks?

Steve Kostecke kostecke at ntp.org
Thu Jan 16 22:43:50 UTC 2014


On 2014-01-16, Miroslav Lichvar <mlichvar at redhat.com> wrote:

> IIRC the pool command in 4.2.6 uses quite a lot of servers, which
> probably is not an acceptable use of pool.ntp.org. I think it was
> improved later in 4.2.7. The page about recommended configuration
> doesn't mention it yet.
>
> http://www.pool.ntp.org/en/use.html
>
> Vendors should be careful with the pool command.

I use the ntp-dev pool command here and see 8 remote time servers in my
peers billboard.

If this is considered to be too many then we should fix ntpd rather than
depreccating a useful configration option.

-- 
Steve Kostecke <kostecke at ntp.org>
NTP Public Services Project - http://support.ntp.org/



More information about the questions mailing list