Hi there,
I have ntp running, but its listening to everyone on udp 123. I tried
to restrict this with these settings in the ntp.conf (Debian Squeeze)
but the port is always listening to the world+dog as shown in the lsof
o/p below:
# lsof -i udp:123
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
ntpd 11011 ntp 16u IPv4 478025 0t0 UDP *:ntp
ntpd 11011 ntp 17u IPv6 478026 0t0 UDP *:ntp
ntpd 11011 ntp 18u IPv4 478032 0t0 UDP localhost:ntp
ntpd 11011 ntp 19u IPv4 478033 0t0 UDP logout:ntp
ntpd 11011 ntp 20u IPv6 478034 0t0 UDP ip6-localhost:ntp
ntpd 11011 ntp 21u IPv6 478035 0t0 UDP
[fe80::21c:14ff:fe01:234d]:ntp
cat /etc/ntp.conf
restrict -4 default kod nomodify notrap nopeer
restrict -6 default kod nomodify notrap nopeer
restrict -4 127.0.0.1
restrict -6 ::1
server 0.debian.pool.ntp.org iburst
server 1.debian.pool.ntp.org iburst
Does anyone know how to stop NTP from listening to the *:ntp port, other
than by using iptables to drop or reject on it.
ntp version 1:4.2.6.p2+dfsg-1+b1
Best regards,
z
--
---
Real Men Play www.NEOCRON.com (Runs fine in WINE;)
& so can your teenage children.
Sending me Email is like dropping salt into seawater.
_______________________________________________
questions mailing list
[email protected]
http://lists.ntp.org/listinfo/questions
