02/08: services: ntp: Fix KOD warning.

guix-commits

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

02/08: services: ntp: Fix KOD warning.

From:	guix-commits
Subject:	02/08: services: ntp: Fix KOD warning.
Date:	Sun, 8 Sep 2019 10:17:03 -0400 (EDT)

apteryx pushed a commit to branch master
in repository guix.

commit d4de2f9ea43d670645f5b8fabf2d1e2a65639191
Author: Maxim Cournoyer <address@hidden>
Date:   Tue Sep 3 10:05:06 2019 +0900

    services: ntp: Fix KOD warning.
    
    Otherwise the following messages would be printed by ntpd:
    
    Sep  2 05:18:21 localhost ntpd[15849]: restrict default: KOD does nothing 
without LIMITE.
    Sep  2 05:18:21 localhost ntpd[15849]: restrict ::: KOD does nothing 
without LIMITED.
    
    Debian uses the same set of "restrict" keywords (see:
    https://sources.debian.org/src/ntp/1:4.2.8p13+dfsg-2/debian/ntp.conf).
    
    * gnu/services/networking.scm (ntp-shepherd-service): Add the 'limited'
    keyword to both the IPv4 and IPv6 'restrict' directives.
---
 gnu/services/networking.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gnu/services/networking.scm b/gnu/services/networking.scm
index e149fe0..13a5c6c 100644
--- a/gnu/services/networking.scm
+++ b/gnu/services/networking.scm
@@ -330,8 +330,8 @@ Protocol (DHCP) client, on all the non-loopback network 
interfaces."
                         "
 # Disable status queries as a workaround for CVE-2013-5211:
 # 
<http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using>.
-restrict default kod nomodify notrap nopeer noquery
-restrict -6 default kod nomodify notrap nopeer noquery
+restrict default kod nomodify notrap nopeer noquery limited
+restrict -6 default kod nomodify notrap nopeer noquery limited
 
 # Yet, allow use of the local 'ntpq'.
 restrict 127.0.0.1

[Prev in Thread]

Current Thread

[Next in Thread]

branch master updated (861b9a3 -> ccdfae3), guix-commits, 2019/09/08
- 01/08: services: ntp: Allow large adjustment by default., guix-commits, 2019/09/08
- 02/08: services: ntp: Fix KOD warning., guix-commits <=
- 08/08: services: openntpd: Fix the config generation code., guix-commits, 2019/09/08
- 03/08: doc: Add index to find 'ntpd'., guix-commits, 2019/09/08
- 06/08: services: openntpd: Remove useless let., guix-commits, 2019/09/08
- 04/08: services: ntp: Support different NTP server types and options., guix-commits, 2019/09/08
- 07/08: services: openntpd: Add test for issue #3731., guix-commits, 2019/09/08
- 05/08: gnu: openntpd: Fix error CA errors when using constraints., guix-commits, 2019/09/08

Prev by Date: 01/08: services: ntp: Allow large adjustment by default.
Next by Date: 08/08: services: openntpd: Fix the config generation code.
Previous by thread: 01/08: services: ntp: Allow large adjustment by default.
Next by thread: 08/08: services: openntpd: Fix the config generation code.
Index(es):
- Date
- Thread