ntpclient names
Gary E. Miller
gem at rellim.com
Wed Feb 22 20:30:53 UTC 2017
Yo Achim!
On Wed, 22 Feb 2017 18:21:01 +0100
Achim Gratz <Stromeko at nexgo.de> wrote:
> Gary E. Miller writes:
> > Mark was thinking of a separate ntp-tools package or option. Many
> > distros has a X package and a matching X-tools package. We could
> > make that easy with a build option.
> >
> > I see the vast majority of users only using ntpd.
> >
> > But seriously, do you really need to save USD$0.001 of disk space?
>
> I'm pretty sure that Hal was more concerned about not putting stuff
> on a public-facing server that wasn't absolutely necessary.
Then 90% of your distro is probably also not absolutely necessary.
If your attacker can run things on your CLI then it is long past game over.
> You'd
> want that for an audited system, like the "sec" part in NTPsec
> implies should be possible.
I've never had that come up in an audit. Every open port gets thorughly
looked at, but not miscellaneous programs in /usr/bin.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20170222/0d101a8c/attachment.bin>
More information about the devel
mailing list