| Re: [chrony-users] Access to NTP protocol version information |
[ Thread Index |
Date Index
| More chrony.tuxfamily.org/chrony-users Archives
]
- To: chrony-users@xxxxxxxxxxxxxxxxxxxx
- Subject: Re: [chrony-users] Access to NTP protocol version information
- From: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
- Date: Mon, 3 Jan 2022 11:04:40 +0100
- Authentication-results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=mlichvar@xxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1641204284; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=1z/qxCpf653Zn97AUKhIxiAh8nPvblUzS9chPOJwSXc=; b=fCyJbdf0chpRTPZABrQjlmbaCAHQwSmuSUoIsGs/ly5pHF4Cac6tDjtNTPd+81bMWz0Op9 1bkLjCHIBJtMkDkSRhM9U94iu7rc2Z2kMV04PMQSjuMMKpFoXemVCiqg1XOcKlKvO4pR7e KcG0j2KeewnISKc8Wf/AdPq55phQsEk=
On Mon, Jan 03, 2022 at 05:03:31PM +1100, Brad Hards wrote:
> I do see this information in the ntpdata report, however that is PERMIT_AUTH.
> I'm trying to do this with just UDP queries from an unprivileged client.
>
> Is there another way to get this information?
No, there is not. The ntpdata report might contain sensitive data
which could potentially be useful in an attack (e.g. the RX count
could be useful to find the client's source port), so I think it's
better to leave it restricted.
--
Miroslav Lichvar
--
To unsubscribe email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "unsubscribe" in the subject.
For help email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "help" in the subject.
Trouble? Email listmaster@xxxxxxxxxxxxxxxxxxxx.