[ntp:security] [Bug 1300] reject remote configuration of dangerous items

Dave Hart via the NTP Bugzilla bugzilla at ntp.org
Sat Sep 19 13:35:24 UTC 2009


hart at ntp.org changed:

           What    |Removed                     |Added
             Status|NEW                         |ASSIGNED

Additional Comments From hart at ntp.org (Dave Hart)
Submitted on 2009-09-19 13:35


filegen's enable and disable options are documented as intended for remote 
configuration and aren't terribly useful otherwise.  Perhaps it would make sense 
to permit only "filegen clockstats enable" while rejecting any filegen commands 
with file, type, link, or nolink modifiers.  Or reject all filegen and deprecate 

Dave Hart <hart at ntp.org>

------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.

More information about the security mailing list