Yo Achim! On Wed, 22 Feb 2017 18:21:01 +0100 Achim Gratz <strom...@nexgo.de> wrote:
> Gary E. Miller writes: > > Mark was thinking of a separate ntp-tools package or option. Many > > distros has a X package and a matching X-tools package. We could > > make that easy with a build option. > > > > I see the vast majority of users only using ntpd. > > > > But seriously, do you really need to save USD$0.001 of disk space? > > I'm pretty sure that Hal was more concerned about not putting stuff > on a public-facing server that wasn't absolutely necessary. Then 90% of your distro is probably also not absolutely necessary. If your attacker can run things on your CLI then it is long past game over. > You'd > want that for an audited system, like the "sec" part in NTPsec > implies should be possible. I've never had that come up in an audit. Every open port gets thorughly looked at, but not miscellaneous programs in /usr/bin. RGDS GARY --------------------------------------------------------------------------- Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703 g...@rellim.com Tel:+1 541 382 8588 Veritas liberabit vos. -- Quid est veritas? "If you can’t measure it, you can’t improve it." - Lord Kelvin
pgpQIKgYr7h96.pgp
Description: OpenPGP digital signature
_______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel