Re: NTP security

To: Jamie Heilman <jamie@audible.transient.net>
Cc: Piotr Tarnowski <piotr_tarnowski@wp.pl>, <debian-security@lists.debian.org>
Subject: Re: NTP security
From: Rishi L Khan <rishi@UDel.Edu>
Date: Sat, 10 Mar 2001 09:54:04 -0500 (EST)
Message-id: <[🔎] Pine.SOL.4.31.0103100953470.19324-100000@copland.udel.edu>
In-reply-to: <[🔎] 20010310034004.B12888@audible.transient.net>

Maybe use tcp wrappers? That's how I'd do it.

		-rishi

On Sat, 10 Mar 2001, Jamie Heilman wrote:

> Piotr Tarnowski wrote:
>
> > If not can I limit allowed clients somehow ? (I noticed that DENY on
> > ipchains to others than my reference external server limits ntptrace
> > usage).
>
> To the best of my knowledge you can't natively (in the application)
> control access at the transport level, which is unfortunate.  You can at
> the protocol level however.  Get the NTP documentation and read about the
> authentication options and the access control options.  To control access
> at the transport level you will have to use firewalling rules.
>
> --
> Jamie Heilman                   http://audible.transient.net/~jamie/
> "I was in love once -- a Sinclair ZX-81.  People said, "No, Holly, she's
>  not for you." She was cheap, she was stupid and she wouldn't load
>  -- well, not for me, anyway."				-Holly
>
>
> --
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>

Reply to:

Follow-Ups:
- Re: NTP security
  - From: Jamie Heilman <jamie@audible.transient.net>

References:
- Re: NTP security
  - From: Jamie Heilman <jamie@audible.transient.net>

Prev by Date: Re: 127.0.0.0/8 addresses from the network
Next by Date: Re: 127.0.0.0/8 addresses from the network
Previous by thread: Re: NTP security
Next by thread: Re: NTP security
Index(es):
- Date
- Thread