Is OpenNTPD better than the included NTPD?
I don't plan on allowing anyone to connect to my machine or use it as a NTPD server. I see that OpenNTPD (OpenBSD's version) by default doesn't listen on any IP/port and seems a little more secure. Is this a good one to use over the included one in FreeBSD, or is there something better? Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is OpenNTPD better than the included NTPD?
On Wed, Oct 11, 2006 at 03:31:47PM -0400, Rob wrote: I don't plan on allowing anyone to connect to my machine or use it as a NTPD server. I see that OpenNTPD (OpenBSD's version) by default doesn't listen on any IP/port and seems a little more secure. Is this a good one to use over the included one in FreeBSD, or is there something better? How are you going to run an NTP server that doesn't listen on any IP/port? Kris pgp3Ud7Fdecxn.pgp Description: PGP signature
Re: Is OpenNTPD better than the included NTPD?
On Oct 11, 2006, at 12:31 PM, Rob wrote: I don't plan on allowing anyone to connect to my machine or use it as a NTPD server. I see that OpenNTPD (OpenBSD's version) by default doesn't listen on any IP/port and seems a little more secure. OpenNTPD doesn't work-- ie, synchronize your clock-- unless you let it talk to higher-stratum timeservers, or unless you provide a local stratum-1 reference clock via GPS or the like, and provide the timedelta sensor that it needs to actually figure out what to do, versus the much more complete refclock support in the official NTPd distribution. Is this a good one to use over the included one in FreeBSD, or is there something better? No-- the stock ntpd which ships with FreeBSD works just fine. The experience of people using or offering NTP services for the NTP pool is that OpenNTPD experiences much wider variations from real time (offsets in the hundreds of milliseconds rather than a few to perhaps tens of milliseconds with ntpd). From http:// www.pool.ntp.org/join/configuration.html: Use the standard ntpd We are all for software diversity, but a significant percentage of the it's not working questions that come in are for software other than ntpd. You can use the pool with any program speaking NTP, but if you are going to join the pool we recommend you use ntpd. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is OpenNTPD better than the included NTPD?
Kris Kennaway wrote: On Wed, Oct 11, 2006 at 03:31:47PM -0400, Rob wrote: I don't plan on allowing anyone to connect to my machine or use it as a NTPD server. I see that OpenNTPD (OpenBSD's version) by default doesn't listen on any IP/port and seems a little more secure. Is this a good one to use over the included one in FreeBSD, or is there something better? How are you going to run an NTP server that doesn't listen on any IP/port? Kris He might want to use it only for syncing, but ntpd also has such sort of function irrc. Anyway, OpenNTPD can do privilege separation, that ntpd can't, I don't know about another difference in the functionality. Personally, I use OpenNTPD from ports and I'm satisfied with it. -- Cheers, Gabor ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is OpenNTPD better than the included NTPD?
On Wed, Oct 11, 2006 at 10:14:56PM +0200, G?bor K?vesd?n wrote: Kris Kennaway wrote: On Wed, Oct 11, 2006 at 03:31:47PM -0400, Rob wrote: I don't plan on allowing anyone to connect to my machine or use it as a NTPD server. I see that OpenNTPD (OpenBSD's version) by default doesn't listen on any IP/port and seems a little more secure. Is this a good one to use over the included one in FreeBSD, or is there something better? How are you going to run an NTP server that doesn't listen on any IP/port? Kris He might want to use it only for syncing, but ntpd also has such sort of function irrc. Anyway, OpenNTPD can do privilege separation, that ntpd can't, I don't know about another difference in the functionality. Personally, I use OpenNTPD from ports and I'm satisfied with it. I misread and thought he was asking for a server. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]