r3 - 2006-11-13 - 17:05:56 - HarlanStennYou are here: NTP >  Dev Web > StatisticsFileIssues
NTP users are strongly urged to take immediate action to ensure that their NTP daemons are not susceptible to being used in distributed denial-of-service (DDoS) attacks. Please also take this opportunity to defeat denial-of-service attacks by implementing Ingress and Egress filtering through BCP38.

ntp-4.2.8p10 was released on 21 March 2017. It addresses 6 medium- and 5 low-severity security issues, 4 informational security topics, 15 bugfixes, and contains other improvements over 4.2.8p9.

Please see the NTP Security Notice for vulnerability and mitigation details.

Are you using Autokey in production? If so, please contact Harlan - he's got some questions for you.

Statistics File Issues

ntpd can generate a variety of statistics as it runs.

Over time, any of these statistics files may have undergone a change in its content or format which makes it difficult to analyze "previous" and "current" data.

Let's use this page to discuss these issues and evolve a solution.

What about generating a "comment line" as the first line generated for every statistics file?

Perhaps something like:

 #loopstats v1
 # day now offset freq*1e6 jitter stability*1e6 spoll

This way we could easily grep out the comment lines and/or use a perl program to combine data from different versions of each statistics file into the desired format.

-- HarlanStenn - 12 Nov 2006

I like that idea, but I would like to take it a step further. I think that the format line should be inserted every time ntpd starts up. Because the ntp.conf file is largely backwards compatible, users often will switch between versions of ntpd and xntpd without changing the names of the stats files, so it is possible to get a mix of formats in a single file.

-- BrianUtterback - 13 Nov 2006

Edit | WYSIWYG | Attach | Printable | Raw View | Backlinks: Web, All Webs | History: r3 < r2 < r1 | More topic actions
Dev.StatisticsFileIssues moved from Dev.StatisticsIssues on 2006-11-12 - 20:11 by HarlanStenn - put it back
SSL security by CAcert
Get the CAcert Root Certificate
This site is powered by the TWiki collaboration platform
IPv6 Ready
Copyright & 1999-2017 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding the site? Send feedback