[ntp:security] [Bug 1300] reject remote configuration of dangerous items

Dave Hart via the NTP Bugzilla bugzilla at ntp.org
Sat Sep 19 13:35:24 UTC 2009


http://bugs.ntp.org/1300


hart at ntp.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |ASSIGNED


----------------------------------------------------------------------------
Additional Comments From hart at ntp.org (Dave Hart)
Submitted on 2009-09-19 13:35

http://www.eecis.udel.edu/~mills/ntp/html/monopt.html#filegen

filegen's enable and disable options are documented as intended for remote 
configuration and aren't terribly useful otherwise.  Perhaps it would make sense 
to permit only "filegen clockstats enable" while rejecting any filegen commands 
with file, type, link, or nolink modifiers.  Or reject all filegen and deprecate 
enable/disable.

-- 
Dave Hart <hart at ntp.org>



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.


More information about the security mailing list