On Wed, Nov 19, 2003 at 02:53:12 +0000, Voytek wrote: > > For ntpd, I'd limit incoming packets to the ip address(es) of your time > > server(s) and source and destination ports 123. For ntpdate, you'll > > need to allow source port 123 and destination ports 1024:65535, but > > still limit it to the address(es) of your time server(s). > > are all of the above in: ipchains ? ntp.conf ?
ipchains/iptables, but you should also restrict the level of access granted to your time server in ntp.conf. There was a good example posted a couple of weeks ago which you can find in the list archives. Cheers, John -- whois [EMAIL PROTECTED] GPG key id: 0xD59C360F http://kirriwa.net/john/ -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
