OpenNTPD inclusion on Fedora Core
Felipe Alfaro Solana
lkml at mac.com
Mon Mar 21 15:53:02 UTC 2005
On 21 Mar 2005, at 14:49, Pekka Savola wrote:
> On Mon, 21 Mar 2005, Paul A. Houle wrote:
>> How does SELinux apply to NTP in FC4?
>
> Well, you don't need SELinux. NTPD as shipped runs by default as user
> 'ntp' (AFAIR), and can be chrooted as well. OpenNTPD takes the
> functional separation a bit further. About the only thing a "bad
> packet" can cause is adjusting your clock.. whether that's bad or not
> is debatable.
I would say maliciously adjusting the clock is very bad, from a
security perspective ;-)
More information about the fedora-devel-list
mailing list