Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: "synchronisation lost" errors for Solaris NTP server
Operating Systems Solaris "synchronisation lost" errors for Solaris NTP server Post 303042076 by Neo on Friday 13th of December 2019 07:41:21 AM
Old 12-13-2019
Quote:
Originally Posted by solaris_1977
It is NTP v3.

It is production NTP server, so being little more caution before changing anything.
That is all the reason to move to chrony. Production servers should have software which is less vulnerable.

See the many NTP security vulnerabilities here:

Code:
https://www.cvedetails.com/vulnerability-list/vendor_id-2153/NTP.html

Having servers in production is not a good reason to run insecure code when you could be running much more secure code that works the same or better.

Also, based on my experience, there are no issues cutting over to chrony from ntpd, especially if your version of ntp is keeping time correctly, and even if it was not, chrony is designed to slowly bring system time into compliance.

See also:

NTP NTP : CVE security vulnerabilities, versions and detailed report

Code:
https://www.cvedetails.com/product/3682/NTP-NTP.html?vendor_id=2153

 

9 More Discussions You Might Find Interesting

1. Filesystems, Disks and Memory

Restoring back files from "lost+found" directory

Hi Friends, How can I Restore the Files present under "lost+found" Directory of a FileSystem (in Solaris & Tru64 OS) to their original Locations. Now-a-days I am loosing lots of files in 2 of my Machines, One running Solaris8 and other Tru64(Digital) Unix. Thanx in... (1 Reply)
Discussion started by: dhasarath
1 Replies

2. UNIX for Dummies Questions & Answers

Can you force local NTP server to be accepted as "suitable"?

Is there some way to force the NTP server on a brand-new install to be "suitable" to sync other servers from? (I'm more concerned with synchronization between machines, and less concerned with what the actual time they sync to is) For example, whenever I install fresh from the Fedora DVDs and... (0 Replies)
Discussion started by: jjinno
0 Replies

3. Linux

NTP treshold "synchronisation lost"

does anyone know how to change the treshold of 128ms in NTP. in order to ignore these alarms: Oct 27 14:44:15 rt1 ntpd: synchronisation lost Oct 27 15:08:25 rt1 ntpd: time reset 0.688591 s Oct 27 15:08:25 rt1 ntpd: synchronisation lost Oct 27 15:28:45 rt1 ntpd: time reset 0.462257 s (0 Replies)
Discussion started by: modcan
0 Replies

4. UNIX for Advanced & Expert Users

All alias in .profile lost when "script" command is called

Hi, I was trying to call "script <an ip add>" command from .profile file to log everything whenever anyone logs in to this user. I did the following at the end of .profile. 1) Extracted the IP address who logged in 2) Called script < ip add> . The problem I am facing is all, aliases etc. written... (3 Replies)
Discussion started by: amicon007
3 Replies

5. AIX

"too big" and "not enough memory" errors in shell script

Hi, This is odd, however here goes. There are several shell scripts that run in our production environment AIX 595 LPAR m/c, which has sufficient memory 14GB (physical memory) and horsepower 5CPUs. However from time to time we get the following errors in these shell scripts. The time when these... (11 Replies)
Discussion started by: jerardfjay
11 Replies

6. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

7. Solaris

Printer configuration Migration from Solaris 10 "LP" to Solaris 11 "CUPS"

Need to find a way to import an LP printers.conf file to CUPS. I have some new Solaris 11.1 boxes that need to have 300 printers added. (0 Replies)
Discussion started by: os2mac
0 Replies

8. UNIX for Dummies Questions & Answers

"Help with bash script" - "License Server and Patch Updates"

Hi All, I'm completely new to bash scripting and still learning my way through albeit vey slowly. I need to know where to insert my server names', my ip address numbers through out the script alas to no avail. I'm also searching on how to save .sh (bash shell) script properly.... (25 Replies)
Discussion started by: profileuser
25 Replies

9. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

LEARN ABOUT DEBIAN

chrony

CHRONY(1)							   User's Manual							 CHRONY(1)

NAME

       chrony - programs for keeping computer clocks accurate

SYNOPSIS

       chronyc [OPTIONS]

       chronyd [OPTIONS]

DESCRIPTION

       chrony  is a pair of programs for keeping computer clocks accurate.  chronyd is a background (daemon) program and chronyc is a command-line
       interface to it. Time reference sources for chronyd can be RFC1305 NTP servers, human (via keyboard and chronyc), or the  computer's  real-
       time  clock at boot time (Linux only). chronyd can determine the rate at which the computer gains or loses time and compensate for it while
       no external reference is present. Its use of NTP servers can be switched on and off (through  chronyc)  to  support  computers  with  dial-
       up/intermittent access to the Internet, and it can also act as an RFC1305-compatible NTP server.

USAGE

       chronyc	is  a command-line interface program which can be used to monitor chronyd's performance and to change various operating parameters
       whilst it is running.

       chronyd's main function is to obtain measurements of the true (UTC) time from one of several sources, and correct the system clock  accord-
       ingly.  It also works out the rate at which the system clock gains or loses time and uses this information to keep it accurate between mea-
       surements from the reference.

       The reference time can be derived from either Network Time Protocol  (NTP)  servers,  reference	clocks,  or  wristwatch-and-keyboard  (via
       chronyc).  The main source of information about the Network Time Protocol is http://www.eecis.udel.edu/~ntp.

       It is designed so that it can work on computers which only have intermittent access to reference sources, for example computers which use a
       dial-up account to access the Internet.	Of course, it will work on computers with permanent connections too.

       In addition, for Linux 2.0.x (for x >= 32) or 2.2 onwards, chronyd can monitor the system's real time clock performance, so the system  can
       maintain accurate time even across reboots.

       Typical accuracies available between 2 machines are

       On  an ethernet LAN : 100-200 microseconds, often much better On a V32bis dial-up modem connection : 10's of milliseconds (from one session
       to the next)

       With a good reference clock the accuracy can reach one microsecond.

       chronyd can also operate as an RFC1305-compatible NTP server and peer.

SEE ALSO

       chronyc(1), chrony(1)

       http://chrony.tuxfamily.org/

AUTHOR

       Richard Curnow <rc@rc0.org.uk>

       This man-page was  written  by  Jan  Schaumann  <jschauma@netmeister.org>  as  part  of	"The  Missing  Man  Pages  Project".   Please  see
       http://www.netmeister.org/misc/m2p2/index.html for details.

       The complete chrony documentation is supplied in texinfo format.

chrony								 December 04, 2009							 CHRONY(1)
All times are GMT -4. The time now is 07:20 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy