[chrony-users] chrony-2.3-pre1 released

[ Thread Index | Date Index | More chrony.tuxfamily.org/chrony-users Archives ]

The first prerelease for chrony-2.3 is now available. The most
important change is support for privilege separation which allows
chronyd to drop root privileges in the main process on all supported
platforms. Thanks to Bryan Christianson for his contributions.

The sources can be downloaded here:

MD5 and SHA1 sums:
0ab416d74e77bd64cd42c5737ed4eb72  chrony-2.3-pre1.tar.gz  
f96981010e83b6c9c4c56ac0f17f86f5f1707c85  chrony-2.3-pre1.tar.gz

Changes since version 2.2.1:

* Add support for NTP and command response rate limiting
* Add support for dropping root privileges on Mac OS X, FreeBSD, Solaris
* Add require and trust options for source selection
* Enable logchange by default (1 second threshold)
* Set RTC on Mac OS X with rtcsync directive
* Allow binding to NTP port after dropping root privileges on NetBSD
* Drop CAP_NET_BIND_SERVICE capability on Linux when NTP port is disabled
* Resolve names in separate process when seccomp filter is enabled
* Replace old records in client log when memory limit is reached
* Don't reveal local time and synchronisation state in client packets
* Don't keep client sockets open for longer than necessary
* Ignore poll in KoD RATE packets as ntpd doesn't always set it correctly
* Warn when using keys shorter than 80 bits
* Add keygen command to generate random keys easily
* Add serverstats command to report NTP and command packet statistics

Bug fixes
* Fix clock correction after making step on Mac OS X
* Fix building on Solaris

Miroslav Lichvar

Attachment: signature.asc
Description: PGP signature

Mail converted by MHonArc 2.6.19+ http://listengine.tuxfamily.org/