tmakinen/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Changed ntp config to more restrictive.

Browse source
This commit is contained in:
Timo Mkinen 2012-01-03 15:53:07 +02:00
parent a5f30acd33
commit 1a8c48db00
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
ntpd/templates/ntp.conf.erb
View file

@ -3,9 +3,9 @@
tinker panic 0 tinker panic 0
<% end -%> <% end -%>
# By default, exchange time with everybody, but don't allow configuration. # By default deny everything
restrict -4 default kod notrap nomodify nopeer noquery restrict default ignore
restrict -6 default kod notrap nomodify nopeer noquery restrict -6 default ignore
# Local users may interrogate the ntp server more closely. # Local users may interrogate the ntp server more closely.
restrict 127.0.0.1 restrict 127.0.0.1
@ -16,6 +16,7 @@ driftfile /var/lib/ntp/ntp.drift
# Remote servers. # Remote servers.
<% ntp_server.each do |server| -%> <% ntp_server.each do |server| -%>
restrict <%= server %> mask 255.255.255.255 nomodify notrap noquery
server <%= server %> server <%= server %>
<% end -%> <% end -%>
<% if is_virtual == "false" -%> <% if is_virtual == "false" -%>