Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 19 Apr 2001 18:00:05 -0700
From:      Kris Kennaway <kris@obsecurity.org>
To:        "Philip J. Koenig" <pjklist@ekahuna.com>
Cc:        FreeBSD Security List <security@FreeBSD.ORG>
Subject:   Re: ntpd version not updated?
Message-ID:  <20010419180005.B54774@xor.obsecurity.org>
In-Reply-To: <3ADF1308.3067.BD4A84@localhost>; from pjklist@ekahuna.com on Thu, Apr 19, 2001 at 04:32:08PM -0700
References:  <3ADF1308.3067.BD4A84@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help 

--tjCHc7DPkfUGtrlw
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Apr 19, 2001 at 04:32:08PM -0700, Philip J. Koenig wrote:
> Re: the recent security advisory on ntpd.  It says in part that versions =
of ntpd=20
> prior to "ntp-4.0.99k_2" are vulnerable, and that 4.2 STABLE as of 4/6 wa=
s=20
> corrected.
>=20
> I just CVSup'd 4.2-STABLE (RELENG_4) as of 4/15, did make world etc., and=
=20
> based on the "version" command in ntpq and ntpdc, and the syslog message,=
=20
> I'm still running version 4.0.99b.  Here's the syslog message:
>=20
> Apr 19 16:14:56 server ntpd[168]: ntpd 4.0.99b Sun Apr 15 09:10:45 PDT 20=
01 (1)
>=20
>=20
> Is there something I'm missing here?

Yes, 4.0.99k_2 is the version of the FreeBSD port of ntpd 4.0.99k,
which isn't the same as the version string reported by the ntpd in the
base system (4.0.99b), or even the version string reported by the ntpd
in ports (which is still 4.099k).

Port version numbers !=3D vendor software version numbers
Port version of ntpd !=3D base system version of ntpd

Kris

--tjCHc7DPkfUGtrlw
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE634oVWry0BWjoQKURAklEAJ97nvi6wSzvTsmD/VfxFN5i+ginkwCeOJmt
E6RgYvpJhihXpHqq/Gg7q+g=
=cE6X
-----END PGP SIGNATURE-----

--tjCHc7DPkfUGtrlw--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010419180005.B54774>