Re: ntpd or openntpd?
- From: noone@xxxxxxxxxxx (Speechless)
- Date: Sun, 30 Dec 2007 20:56:48 GMT
On Sun, 30 Dec 2007 17:17:43 +0000 (UTC), Michael Grimm
<trashcan@xxxxxxxxxxxxxxxx> wrote:
Hi -
Disclaimer: I have to admit that I'm a newbie with regard to FBSD.
I'm currently running 6.2-RELEASE on a small newsserver behind a Netgear
router with its "firewall" settings in place, synchronizing time by
invoking "ntpd -q" out of /etc/crontab twice an hour.
Not a good idea.
Occasionally
this command hangs forever, and time synchronization is gone ...
Therefore I'm considering to run ntpd in daemon mode. It's only purpose
will be the time synchronization for that given server, no ntp server
functionality for my LAN needed. Here comes my question:
What would you recommend to use from a security point of view, ntp
4.2.0-a as part of 6.2-RELEASEi [1],
a newer ntpd port aka ntp-4.2.2p4 or
ntp-4.2.5p75, or the OpenBSD ntpd port?
To avoid compatiblity issues, you are best off to use what came with
your release, unless you have some explicit reason to do otherwise.
Simply add: ntpd_enable="YES"
to your /etc/rc.conf
[1] /etc/ntp.conf:
server 1.xxxx
server 2.xxxx
server 3.xxxx
restrict default ignore
Use NTP Pool Servers for your region
See: http://support.ntp.org/bin/view/Servers/NTPPoolServers
Your ntp.conf should also have: driftfile /var/db/ntp.drift
It takes about an hour+ of running before the drift file gets created.
Make sure that it is created.
Regards,
Michael
--
to let
.
- Follow-Ups:
- Re: ntpd or openntpd?
- From: Matthew X. Economou
- Re: ntpd or openntpd?
- From: Michael Grimm
- Re: ntpd or openntpd?
- References:
- ntpd or openntpd?
- From: Michael Grimm
- ntpd or openntpd?
- Prev by Date: Re: ntpd or openntpd?
- Next by Date: Re: QEmu with KQemu on FreeBSD / amd64?
- Previous by thread: Re: ntpd or openntpd?
- Next by thread: Re: ntpd or openntpd?
- Index(es):
Relevant Pages
|
