[ntpsec commit] Add documentation for security/DDoS issues to TODO

Hal Murray murray at ntpsec.org
Sun Oct 4 20:56:44 UTC 2015


Module:    ntpsec
Branch:    master
Commit:    017a3a76483b615f2ae5f3a063bdda490da6a85e
Changeset: http://git.ntpsec.org/ntpsec/commit/?id=017a3a76483b615f2ae5f3a063bdda490da6a85e

Author:    Hal Murray <hmurray at megapathdsl.net>
Date:      Sun Oct  4 13:56:05 2015 -0700

Add documentation for security/DDoS issues to TODO

---

 devel-docs/TODO | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/devel-docs/TODO b/devel-docs/TODO
index eddeaef..4742a20 100644
--- a/devel-docs/TODO
+++ b/devel-docs/TODO
@@ -35,8 +35,6 @@ None right now. (Sep-22 2015)
 * We need a build time option to disable all dangerous operations
   that ntpq can produce.
 
-* Make sure we default to rate limiting on.  (anti-DDoS)
-
 
 === Porting ===
 
@@ -129,6 +127,10 @@ is not yet tested anywhere but in ntpd itself.
   should be split out.  3 examples: Autokey, contents of log files,
   multicast/broadcase/manycast.
 
+* We need a page on security/DDos issues encountered by NTP, both
+  as applied to attacking our system and using our system to attack
+  other systems.
+
 
 === Remaining procedural issues ===
 



More information about the vc mailing list