My suggestion removing an option was meant to be kod, sorry if that was unclear. The reason for this suggestion is that some clients react badly, causing a flood of queries.
-- sent from my iPod - please excuse the brevity Am 03.03.2014 um 04:14 schrieb Brian Rak <[email protected]>: > Removing noquery is not a good idea. You *will* be abused for DDOS attacks > in short order. I think the "repeating their query" that you're seeing is > someone who's being attacked. It's very unlikely a legitimate client is > repeating their query over and over again. > > Just use noquery. As far as I'm aware, KOD has no effect on management > queries (such as monlist). > > On 3/2/2014 5:06 PM, Klaus Hartnegg wrote: >> >> Check the lines with "restrict" and "default" in the file ntpd.conf. >> >> Is "noquery" included? If not: append it. People who want do make DDOS >> attacks love ntp servers where this is missing. But they will not >> necessarily notice that you have added it, and might keep trying. >> >> If "noquery" was already included, then is "kod" included? Some clients >> react to this by repeating their query. Try removing it. _______________________________________________ pool mailing list [email protected] http://lists.ntp.org/listinfo/pool
