From owner-freebsd-security@FreeBSD.ORG  Fri Dec 26 00:15:30 2014
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 01E5948D
 for <freebsd-security@freebsd.org>; Fri, 26 Dec 2014 00:15:30 +0000 (UTC)
Received: from keltia.net (aran.keltia.net [88.191.250.24])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id BA3493AE3
 for <freebsd-security@freebsd.org>; Fri, 26 Dec 2014 00:15:28 +0000 (UTC)
Received: from lonrach-2.local (foret.keltia.net [78.232.116.160])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested) (Authenticated sender: roberto)
 by keltia.net (Postfix) with ESMTPSA id C1720529E
 for <freebsd-security@freebsd.org>; Fri, 26 Dec 2014 01:15:19 +0100 (CET)
Date: Fri, 26 Dec 2014 01:15:14 +0100
From: Ollivier Robert <roberto@keltia.freenix.fr>
To: freebsd-security@freebsd.org
Subject: Re: ntpd vulnerabilities
Message-ID: <20141226001513.GA85647@lonrach-2.local>
References: <20141224010640.1BB77E80@hub.freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20141224010640.1BB77E80@hub.freebsd.org>
X-Operating-System: MacOS X / MBP 4,1 - FreeBSD 8.0 / T3500-E5520 Nehalem
User-Agent: Mutt/1.5.23 (2014-03-12)
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Dec 2014 00:15:30 -0000

According to Roger Marquis:
> For now openntpd is the recommended solution but a more minimal client
> might be preferable depending on implementation specifics.  The only

Last time I checked, it does not do NTP4 (the protocol), only NTP3.

-- 
Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr
In memoriam to Ondine : http://ondine.keltia.net/