ntpsec | "ntpq -c ifstats" asking for a keyid (#298)

Gary E. Miller gem at rellim.com
Mon May 8 22:51:37 UTC 2017


Yo Hal!

On Mon, 08 May 2017 15:46:12 -0700
Hal Murray via devel <devel at ntpsec.org> wrote:

> > Currently ntpdig tries and fails to the the command line.  ntpq
> > does none of the above.
> > Comments?   
> 
> If we are being serious about security, ntpd should have a build time
> option to disable all changes via mode 6 packets.  If you want to
> change something, edit ntp.conf and restart ntpd.

Seems a bit harsh.  Remote changes can be disabled in the ntp.conf.

Maybe a command line option to disable remote changes?

Until we fix the ntpd startup issues the ability to change things
wheil running is usefull.

RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
	gem at rellim.com  Tel:+1 541 382 8588

	    Veritas liberabit vos. -- Quid est veritas?
    "If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20170508/b1e76e61/attachment.bin>


More information about the devel mailing list