Change default to "restrict default kod limited nomodify nopeer noquery"
Mark Atwood
fallenpegasus at gmail.com
Sat Dec 10 20:14:09 UTC 2016
On Sat, Dec 10, 2016 at 11:00 AM Eric S. Raymond <esr at thyrsus.com> wrote:
>
> Pretty much every distribution in the universe ships a default
> ntp.conf with a restriction sectio that looks like this:
> [...]
> I'm requesting comment on the following behavior change:
> (1) Make these the default restrictions at startup, replacing none at all.
> (2) Retain current behavior if built with --enable-classic-mode.
>
I like it, and learn towards saying yes. Let's see what Hal and others say.
We may want to emit a log warning if the daemon is ever configured to allow
modify, peer, or query from global.
..m
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ntpsec.org/pipermail/devel/attachments/20161210/7fb1681b/attachment.html>
More information about the devel
mailing list