NTP users are strongly urged to take immediate action to ensure that their NTP daemons are not susceptible to being used in distributed denial-of-service (DDoS) attacks. Please also take this opportunity to defeat denial-of-service attacks by implementing Ingress and Egress filtering through BCP38.
ntp-4.2.8p6 was released on 19 January 2016. It addresses 9 low- and medium-severity security issues, 10 bugfixes, and contains other improvements over 4.2.8p5.
Are you using Autokey in production? If so, please contact Harlan - he's got some questions for you.
Network Code Wizards Wanted
The NTP Project needs more networking code wizards - the current set of volunteers are swamped.
We need help with IPv4 and IPv6, on both Unix and Windows, to help with a number of issues, including some that are blocking the 4.2.6 release (see ReleaseSchedule
for a link to the list of blockers).