Hi Jim! Welcome to the wild and woolly ntp pool!
It is pretty much left to the individual pool members what to do
about abusive clients. You list actually doesn't look too bad. Only
one client near 1 second intervals. It's the 4- or 8-per-second one
that kill me!
You can:
1) Firewall abusive IPs
2) Give 'em the ignore / kiss of death in your ntp.conf file
3) Send an email to the abuse address from their whois
None of these are guaranteed. I have had varying success with each.
For 1) and 2) the client sometimes doesn't follow the rules and keeps
requesting (at an increased rate, even!). On the email front, it can
be tough to find a good address sometimes, and the client sysadmin/
user may not respond or even know they have ntp running. But some
people are extremely friendly and courteous and take action immediately.
In any case, abuse just seems to be a necessary evil around here (at
least for now). Please read the archive of this list and you may
come up with some more ideas.
...Dave
On Jan 20, 2006, at 7:01 PM, Jim Norton wrote:
Hello folks,
I recently joined the pool of servers and I'm noticing a number of
abusive clients. What is the most common way of dealing with this?
I know I could write a script to deny access to abusive clients...
but what at what point is typical to take this draconian approach?
If you check out my servers status page at http://
status.midvalleyhosting.com you'll see a far amount of client noted
as being abusive ( at the bottom of the status page ).
--
Jim Norton - http://www.jimnorton.org
Congress shall make no law respecting an establishment of religion,
*or
prohibiting the free exercise thereof*; or abridging the freedom of
speech, or
of the press; or the right of the people peaceably to assemble, and
to petition
the government for a redress of grievances.
_______________________________________________
timekeepers mailing list
[email protected]
https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
_______________________________________________
timekeepers mailing list
[email protected]
https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
