OpenNTPProject.org

Pete Ashdown pashdown at xmission.com
Mon Feb 17 07:23:43 UTC 2014


On 2/16/14, 7:38 PM, Brian Rak wrote:
> Seriously, just fix your configuration.  The part of NTP being abused
> is completely unrelated to actually synchronizing time.  It's a
> management query, that has no real reason to be enabled remotely. You
> don't even need to resort to iptables for this, because NTPD has built
> in rate limiting (which isn't enabled for management queries, but
> those are trivial to disable).
Thanks for the tip, monitoring is off.  I was under the impression that
rate-limiting hadn't made it into a stable version of ntpd yet.  Is that
incorrect?




More information about the NANOG mailing list