On Mon, 2005-03-21 at 15:49 +0200, Pekka Savola wrote:
> Well, you don't need SELinux. NTPD as shipped runs by default as user
> 'ntp' (AFAIR), and can be chrooted as well. OpenNTPD takes the
> functional separation a bit further. About the only thing a "bad
> packet" can cause is adjusting your clock.. whether that's bad or not
> is debatable.
ONLY if they can introduce more outlyers to your NTP server/network than
the algorithm can identify and even then they would be limited to
adjustments smaller than 1000s at a time.
Tom
--
T h o m a s Z e h e t b a u e r ( TZ251 )
PGP encrypted mail preferred - KeyID 96FFCB89
finger thomasz@xxxxxxxxxxxxxx for key
The reasonable man adapts himself to the world;
the unreasonable one persists in trying to adapt the world to himself.
Therefore, all progress depends on the unreasonable man.
- George Bernard Shaw
Attachment:
signature.asc
Description: This is a digitally signed message part
