[Git][NTPsec/ntpsec][master] ntpd: document 'peer' is now just an alias of 'server' in ntp.conf.

Gary E. Miller gitlab at mg.gitlab.com
Wed Oct 26 21:46:00 UTC 2016 

Gary E. Miller pushed to branch master at NTPsec / ntpsec


Commits:
aabda77c by Gary E. Miller at 2016-10-26T14:44:48-07:00
ntpd: document 'peer' is now just an alias of 'server' in ntp.conf.

- - - - -


2 changed files:

- docs/includes/assoc-commands.txt
- docs/index.txt


Changes:

=====================================
docs/includes/assoc-commands.txt
=====================================
--- a/docs/includes/assoc-commands.txt
+++ b/docs/includes/assoc-commands.txt
@@ -31,13 +31,8 @@ link-local IPV6 address with an interface specified in
   clock. This command should _not_ be used for broadcast or multicast addresses.
 
 +peer+::
-  For server addresses (only), this command mobilizes a persistent
-  symmetric-active mode association with the specified remote peer. In
-  this mode the local clock can be synchronized to the remote peer or
-  the remote peer can be synchronized to the local clock. This is useful
-  in a network of servers where, depending on various failure scenarios,
-  either the local or remote peer may be the better source of time. This
-  command should NOT be used for broadcast, multicast, or refclock addresses.
+  NTP peer mode has been removed for security reasons.  peer is now just
+  an alias for the server keyword.  See above.
 
 +broadcast+::
   For broadcast and multicast addresses (only), this command mobilizes a persistent


=====================================
docs/index.txt
=====================================
--- a/docs/index.txt
+++ b/docs/index.txt
@@ -90,6 +90,9 @@ few will be user-visible.
 * As noted above, Autokey is not supported; that code has been
   removed, as it was chronically prone to security vulnerabilties.
 
+* peer mode has been removed.  The keyword peer in ntp.conf is now
+  just an alias for keyword server.  Incoming peer packets are ignored.
+
 * The deprecated and vulnerability-prone ntpdate program has been
   replaced with a shell wrapper around {ntpdig}.  Its -e and -p
   options are not implemented. It is no longer documented, but can be



View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/aabda77c3534aeaa597991f3179a55301d66a12a
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ntpsec.org/pipermail/vc/attachments/20161026/34faf845/attachment.html>

More information about the vc mailing list