Re: [chrony-dev] Traffic amplification with chrony commands

[ Thread Index | Date Index ]


I wrote:
> Chronyc could simply always try to get the password from chrony.keys and
> only ask the user for a password if it fails.

Miroslav Lichvar writes:
> You mean to always enable the -a option? The commands I normally use
> don't require password, so I thought the password should be read (and
> kept in memory) only when really needed.

I had in mind only attempting authentication only when a restricted
command is used.  Might be better if -a did that anyway.
-- 
John Hasler 
jhasler@xxxxxxxxxxx
Elmwood, WI USA

-- 
To unsubscribe email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "unsubscribe" in the subject.
For help email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "help" in the subject.
Trouble?  Email listmaster@xxxxxxxxxxxxxxxxxxxx.


Mail converted by MHonArc 2.6.19+ http://listengine.tuxfamily.org/