ntpd w/ --enable-early-droproot
Achim Gratz
Stromeko at nexgo.de
Sat Nov 26 21:33:38 UTC 2016
Eric S. Raymond writes:
> Achim Gratz <Stromeko at nexgo.de>:
>> Configuring ntpd to drop root early makes it fail to open the refclock
>> devices (which are owned by root). I guess they should be readyble by
>> group ntp at least on Raspbian, which starts ntpd with that group?
>
> Yes, they should be.
>
> Our philosophy in situations like this is to go for the high-security option
> even if it needs a little more one-time setup, like a chmod or a udev rule.
I'll try that tomorrow as well. I have these devices set up by udev
anyway, so I only need to figure out how to tell it to give them a
different group.
Regards,
Achim.
--
+<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+
SD adaptations for KORG EX-800 and Poly-800MkII V0.9:
http://Synth.Stromeko.net/Downloads.html#KorgSDada
More information about the devel
mailing list