[ntp:questions] better rate limiting against amplification attacks?

Steve Kostecke kostecke at ntp.org
Wed Jan 15 21:06:07 UTC 2014


On 2014-01-15, Harlan Stenn <stenn at ntp.org> wrote:

> Rob writes:
>
>> The default config shipped with ntpd, usually mostly provided by the
>> distributor, is often terrible. (remember the LOCAL clock?)
>
> Yes, because there is no default configuration in the distribution.
>
> That is left to the "vendor" to provide, as they know more about their
> client base than "we" do. Some vendors do a better job than others at
> providing their ntp.conf file.

The latter would not be an issue if suitable sample configuration files
were provided so that the vendors/aggregators/distributors had a sane
starting point for the customization efforts.

-- 
Steve Kostecke <kostecke at ntp.org>
NTP Public Services Project - http://support.ntp.org/



More information about the questions mailing list