EditWYSIWYGAttachPrintable
r3 - 2007-03-27 - 17:25:48 - SteveKosteckeYou are here: NTP >  Servers Web > StratumOneTimeServers > ClosedAccess
NTP users are strongly urged to take immediate action to ensure that their NTP daemons are not susceptible to being used in distributed denial-of-service (DDoS) attacks. Please also take this opportunity to defeat denial-of-service attacks by implementing Ingress and Egress filtering through BCP38.

ntp-4.2.8p13 was released on 07 March 2019. It addresses 1 medium-severity security issue in ntpd, and provides 17 non-security bugfixes and 1 other improvements over 4.2.8p12.

Please see the NTP Security Notice for vulnerability and mitigation details.

Are you using Autokey in production? If so, please contact Harlan - he's got some questions for you.

Closed Access Time Server

Closed access time servers may not be used without prior arrangement.

Operators of closed access time servers generally require a NotificationMessage to secure permission for access to their server.

The following limitations and conditions apply to Closed Access Time Servers unless modified by the Time Server Operator:

  1. iburst may be used
  2. burst may not be used
  3. minpoll/maxpoll may not be changed below the defaults of 64 seconds and 1024 seconds respectively
  4. Clients should honor the KOD message
  5. Time Server IP addresses and/or hostnames may not be hard-coded in any hardware, firmware, or software without advance explicit written permission from the time server operator

Related Topics: OpenAccess, RestrictedAccess, AccessPolicy

Edit | WYSIWYG | Attach | Printable | Raw View | Backlinks: Web, All Webs | History: r5 < r4 < r3 < r2 < r1 | More topic actions...
 
SSL security by CAcert
Get the CAcert Root Certificate
This site is powered by the TWiki collaboration platform
IPv6 Ready
Copyright & 1999-2019 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding the site? Send feedback