Evandro Menezes wrote:
> I've noticed a couple of NTP clients with the unusual avgint of 16s with
> hundreds of accesses to my NTP server in the pool. I added a restriction, in
> addition to the recommended ones already in place, to cope with the
> suspicious clients bumping the discard averag
On Mon, Oct 06, 2014 at 06:49:58PM -0700, Evandro Menezes wrote:
> On Monday, October 6, 2014 6:50:09 PM UTC-5, William Unruh wrote:
> > Not only that but they are probably running ntp 3 systems, which does
> > not have KOD.
>
> The suspects are purportedly NTPV4:
>
> remote address port
Harlan Stenn wrote:
> William Unruh writes:
>> Not only that but they are probably running ntp 3 systems,
>> which does not have KOD.
>
> It would be really nice to be able to identify what these are
> - if somebody finds out please tell me.
The OP could do e.g.: ntpq -cmrulist
and look at the
