Date: Fri, 5 Jun 2009 16:56:13 +0300 From: Valentin Bud <valentin.bud@gmail.com> To: "Sean C. Farley" <scf@freebsd.org> Cc: Ollivier Robert <roberto@freebsd.org>, freebsd-net@freebsd.org, Edwin Groothuis <edwin@freebsd.org> Subject: Re: NTP - default /etc/ntp.conf Message-ID: <139b44430906050656pe72d107mfa23561f8f706461@mail.gmail.com> In-Reply-To: <alpine.BSF.2.00.0906050846160.6209@thor.farley.org> References: <20090605124428.GA85576@mavetju.org> <alpine.BSF.2.00.0906050846160.6209@thor.farley.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jun 5, 2009 at 4:52 PM, Sean C. Farley <scf@freebsd.org> wrote: > On Fri, 5 Jun 2009, Edwin Groothuis wrote: > > After pondering at conf/58595, I came with this text. >> >> The ntpd is not enabled by default, so the fact that the servers >> are commented out should not be an issue. >> >> Any objections against adding it to the tree? >> > > I like it. > > I would also add restrict lines to it since ntp defaults to being open to > all packets. > > These would ignore everything except the pools (restricted) and localhost > (open): > restrict default ignore > restrict pool.ntp.org nomodify nopeer noquery notrap > restrict pool.ntp.org nomodify nopeer noquery notrap > restrict 127.0.0.1 > restrict -6 ::1 > > > Index: etc/ntp.conf >> =================================================================== >> --- etc/ntp.conf (revision 0) >> +++ etc/ntp.conf (revision 0) >> @@ -0,0 +1,28 @@ >> +# >> +# $FreeBSD$ >> +# >> +# Default NTP servers for the FreeBSD operating system. >> +# >> +# Don't forget to enable ntpd in /etc/rc.conf with: >> +# ntpd_enable="YES" >> +# >> + >> +driftfile /var/db/ntpd.drift >> + >> +# >> +# Uncomment the following three lines to sync against three "local" >> +# public NTP servers. >> +# >> +# server pool.ntp.org >> +# server pool.ntp.org >> +# server pool.ntp.org >> + >> +# >> +# If you want to pick yourself which country's public NTP server >> +# you want sync against, comment out the above servers, uncomment >> +# the next ones and replace CC with the country's abbrevation. >> +# >> +# server CC.pool.ntp.org >> +# server CC.pool.ntp.org >> +# server CC.pool.ntp.org >> +# >> Index: etc/Makefile >> =================================================================== >> --- etc/Makefile (revision 193485) >> +++ etc/Makefile (working copy) >> @@ -14,7 +14,7 @@ >> hosts hosts.allow hosts.equiv \ >> inetd.conf libalias.conf login.access login.conf mac.conf motd \ >> netconfig network.subr networks newsyslog.conf nsswitch.conf \ >> - phones profile protocols \ >> + ntpd.conf phones profile protocols \ >> > > ntpd.conf or ntp.conf? I guess it's a typo and should be ntp.conf. > > > Sean > -- > scf@FreeBSD.org > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > That's a very good idea. It provides a starting point for new users of ntpd. my 7c, v -- network warrior since 2005
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?139b44430906050656pe72d107mfa23561f8f706461>