On Thu, Apr 10, 2014 at 07:29:58AM +0200, Marco Tedaldi wrote:
> Two days ago, I updated my systems to a patches version of libssl
> Yesterday I heard, that you have to restart the services using ssl (which
> seems common sense in hindsight). But I've als realized, that the ntpd also
> uses ssl.
ntpd is linked against openssl for hashing support for the
authentication options.
> Is NTP affected by this bug? Should pool member be 3xtra careful to update
> and restart ntpd therefore?
ntpd doesn't even use TCP, much less TLS. There's no exposure
here, but to ensure the new library is picked up by all processes that
are exposed, you may wish to reboot after update anyway.
--msa
_______________________________________________
pool mailing list
[email protected]
http://lists.ntp.org/listinfo/pool
