[ntp:hackers] NTP Development Snapshot 4.2.5p208 Released
Danny Mayer
mayer at ntp.org
Mon Sep 7 03:10:54 UTC 2009
Dave Hart wrote:
> On Sun, Aug 30, 2009 at 4:45 PM, Brian Utterback wrote:
>> Overwriting the existing file is something that is highly dangerous and
>> probably ought not to be allowed at all and to make it so simple to do by
>> mistake is just not a good design.
>
> For some people, overwriting the existing configuration file is the
> only option that's interesting, as they would like to delegate ntpd
> administration to someone who does not have any other access to the
> host to replace files manually. Without a shorthand for the startup
> configuration file path, someone intending to replace it but without
> access to the host would have to know or guess the startup
> configuration filename.
Given how insecure authentication is with ntpq, I would always give SSH
access over ntpq access.
Danny
More information about the hackers
mailing list