Bug#411809: [pkg-ntp-maintainers] Bug#411809: Security: default
configuration allows unrestricted access over IPv6
Kurt Roeckx
kurt at roeckx.be
Mon Feb 26 20:03:21 CET 2007
forwarded 411809 https://ntp.isc.org/bugs/show_bug.cgi?id=320
thanks
On Wed, Feb 21, 2007 at 02:34:51AM +0100, Juliusz Chroboczek wrote:
> Package: ntp
> Version: 1:4.2.2.p4+dfsg-1
> Severity: important
>
> $ ntpdc
> ntpdc> reslist
> ...
> :: :: 89 none
> ...
It seems upstream seems to know about this for a while. The upstream
bug report lists 2 ways of dealing with this. I think we should use:
restrict -4 default kod notrap nomodify nopeer noquery
restrict -6 default kod notrap nomodify nopeer noquery
Kurt
More information about the pkg-ntp-maintainers
mailing list