* Joel Reicher ([EMAIL PROTECTED]) [050914 11:59] wrote:
>> The "discard packets if too many requests received" method only helps
>> against users caring about time syncronization, but using the wrong
>> software or configuration. If those people detect that they do not get
>> what they want, they will either change the ntp server they are using or
>> reconfigure/change their software.
> Somebody's already suggested something much better to achieve this. I
> forget who it was, but the suggestion was that abusive clients be given
> the *wrong* time, rather than be ignored. Users will notice this much
> more.
The subject appeared because abusers generate extra load for ntp daemon.
The goal should be not handling abusers at all ( best: not even letting
their packets to reach ntpd, worse: discarding their packets inside ntpd,
right after receiving ).
Differentiating answer to regulars and abusers inside ntpd is against
the principles of the Networking Art imho.
MJ
--
[EMAIL PROTECTED] ( Psyborg ) MJ102-RIPE GTS Polska sp. z o.o.
Servers Administration Department Manager
"A city is a large community where people are lonesome together."
_______________________________________________
timekeepers mailing list
[email protected]
https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
