Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: "synchronisation lost" errors for Solaris NTP server
Operating Systems Solaris "synchronisation lost" errors for Solaris NTP server Post 303042092 by Neo on Friday 13th of December 2019 11:36:03 PM
Old 12-14-2019
Quote:
Originally Posted by jlliagre
NTP might be the least of the security issues here.

Running such an outdated and unpatched version of Solaris (17 years old!) in production is quite unreasonable. There are certainly hundreds of major vulnerabilities on that server. Moreover, assuming a firewall is protecting the server and NTP is the only visible service, you might have issues compiling a recent version of chrony for Solaris 9 anyway.
Well stated.

Let me be more to the point.

It is a total waste of time to be replying to anyone who is running a 17 year old OS (with a seriously flawed and out-of-date version of NTP), which could be replaced in a day for free with a modern OS (more secure, more reliable, not seriously flawed, and do a much better job for a NTP application).

The original poster is wasting our time, showing a lack of concern for our time, to ask us to sort out a problem on a 17 year old operating system (and not telling us before hand the version(s) they are running), which could be replaced by any "normal" system admin in less than a hour (for free, and do a better and more reliable job).

This is why I wish everyone here at unix.com would slow down (including myself at times) and stop answering questions from posters until the posters first describe the operation system, version numbers, etc. Some here are good at this, some of us are good at this sometimes and then forgot to ask, others seem to like to bypass the "understanding" phase and just post answers without any concern for the user's OS, versions, etc.

Everyone here (including me sometimes, but not often) needs to slow down and ask people who post questions to describe the OS, version, etc. before providing "quick" answers to questions. Jumping to "answers" before having the "right understanding" is not teaching people how to solve problems, it is contributing to the problem (in my view).

Perhaps I need to change the forum rules and make this a posting requirement in 2020?

Editorial Comment:

As a side note, the reason that most computers are hacked with ransomware or other easily acquired malware (easily purchased on the dark web) is that they are running unpatched, antiquated systems and obsolete code. Every system admin, organization and company must keep their computer operating systems up-to-date, fully patched and upgraded to the latest versions. This is very basic. Do not run vulnerable, obsolete code and antiquated operating systems. Update your operation systems, update your apps, make and maintain backups (onsite and offsite). Manage your IT systems, please.
 

9 More Discussions You Might Find Interesting

1. Filesystems, Disks and Memory

Restoring back files from "lost+found" directory

Hi Friends, How can I Restore the Files present under "lost+found" Directory of a FileSystem (in Solaris & Tru64 OS) to their original Locations. Now-a-days I am loosing lots of files in 2 of my Machines, One running Solaris8 and other Tru64(Digital) Unix. Thanx in... (1 Reply)
Discussion started by: dhasarath
1 Replies

2. UNIX for Dummies Questions & Answers

Can you force local NTP server to be accepted as "suitable"?

Is there some way to force the NTP server on a brand-new install to be "suitable" to sync other servers from? (I'm more concerned with synchronization between machines, and less concerned with what the actual time they sync to is) For example, whenever I install fresh from the Fedora DVDs and... (0 Replies)
Discussion started by: jjinno
0 Replies

3. Linux

NTP treshold "synchronisation lost"

does anyone know how to change the treshold of 128ms in NTP. in order to ignore these alarms: Oct 27 14:44:15 rt1 ntpd: synchronisation lost Oct 27 15:08:25 rt1 ntpd: time reset 0.688591 s Oct 27 15:08:25 rt1 ntpd: synchronisation lost Oct 27 15:28:45 rt1 ntpd: time reset 0.462257 s (0 Replies)
Discussion started by: modcan
0 Replies

4. UNIX for Advanced & Expert Users

All alias in .profile lost when "script" command is called

Hi, I was trying to call "script <an ip add>" command from .profile file to log everything whenever anyone logs in to this user. I did the following at the end of .profile. 1) Extracted the IP address who logged in 2) Called script < ip add> . The problem I am facing is all, aliases etc. written... (3 Replies)
Discussion started by: amicon007
3 Replies

5. AIX

"too big" and "not enough memory" errors in shell script

Hi, This is odd, however here goes. There are several shell scripts that run in our production environment AIX 595 LPAR m/c, which has sufficient memory 14GB (physical memory) and horsepower 5CPUs. However from time to time we get the following errors in these shell scripts. The time when these... (11 Replies)
Discussion started by: jerardfjay
11 Replies

6. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

7. Solaris

Printer configuration Migration from Solaris 10 "LP" to Solaris 11 "CUPS"

Need to find a way to import an LP printers.conf file to CUPS. I have some new Solaris 11.1 boxes that need to have 300 printers added. (0 Replies)
Discussion started by: os2mac
0 Replies

8. UNIX for Dummies Questions & Answers

"Help with bash script" - "License Server and Patch Updates"

Hi All, I'm completely new to bash scripting and still learning my way through albeit vey slowly. I need to know where to insert my server names', my ip address numbers through out the script alas to no avail. I'm also searching on how to save .sh (bash shell) script properly.... (25 Replies)
Discussion started by: profileuser
25 Replies

9. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

LEARN ABOUT OSF1

ntpdate

ntpdate(8)						      System Manager's Manual							ntpdate(8)

NAME

       ntpdate - set the date and time via NTP (Network Time Protocol)

SYNOPSIS

       /usr/sbin/ntpdate [-bdqsuv] [-a key#] [-e authdelay] [-k keyfile] [-o version] [-p samples] [-t timeout] server1 server2 server3...

OPTIONS

       Tells  ntpdate  to  step  the system time immediately to match NTP. Use this option only when booting the system.  Prints configuration and
       debugging information.  Queries the server(s) and prints the information received; the date and time are not set.  Tells ntpdate to log its
       actions	through  the  syslog(3) facility rather than to the standard output.  This is useful when running the program from cron(8).  Tells
       ntpdate to use an unprivileged port to send the packets from. This is useful when you are behind a firewall that blocks incoming traffic to
       privileged ports, and you want to synchronise with hosts beyond the firewall. Note that the -d option always uses unprivileged ports.  Runs
       in verbose mode.  Specifies that all packets should be authenticated using the key number provided.  Specifies an authentication processing
       delay,  in seconds (see xntpd(8) for details). This number is usually small enough to be negligible for ntpdate's purposes, though specify-
       ing a value may improve timekeeping on very slow CPU's.	Specifies that authentication keys will  be  read  from  keyfile  instead  of  the
       default	/etc/ntp.keys file.  This file should be in the format described in xntpd(8).  Forces ntpdate to poll as a version implementation.
       By default ntpdate claims to be an NTP version 3 implementation in its outgoing packets. Some older software will  decline  to  respond	to
       version	3  queries.   Acquires a specified number of samples from each server. The range of values for samples is from 1 and 8, inclusive.
       The default is 4.  Waits timeout seconds for a response. Any value entered will be rounded to a multiple of 0.2 seconds.  The default is  1
       second, a value suitable for polling across a LAN.

DESCRIPTION

       The ntpdate command sets the local date and time by polling the Network Time Protocol server(s) on the host(s) given as arguments to deter-
       mine the correct time.  It must be run as root on the local host.  A number of samples are obtained from each of the servers specified  and
       the  standard  NTP  clock  filter  and  selection  algorithms  are  applied  to	select the best of these.  The ntpdate command is run from
       /sbin/init.d/settime to set the time of day at boot time, if NTP is configured.	(See ntpsetup(8) for information on configuring NTP.) Note
       that  ntpdate's	reliability  and  precision will improve dramatically with greater numbers of servers.	While a single server may be used,
       better performance and integrity will be obtained by providing at least three or four servers, if not more.

       Time adjustments are made by ntpdate in one of the following ways: If ntpdate determines your clock is off by more  than  0.5  seconds,	it
       steps  the  time by calling settimeofday(2).  If the error is less than 0.5 seconds, however, it will by default slew the clock's time by a
       call to adjtime(2) with the offset.

       The latter technique is less disruptive and more accurate when the offset is small, and works quite well when ntpdate is run by cron  every
       hour  or  two.  The adjustment made in the latter case is actually 50% larger than the measured offset since this will tend to keep a badly
       drifting clock more accurate (at some expense to stability, though this tradeoff is usually advantageous).

       Ntpdate will decline to set the date if an NTP server daemon (for example, xntpd(8)) is running on the same host.  When running ntpdate	on
       a regular basis from cron(8) as an alternative to running a daemon, doing so once every hour or two will result in precise enough timekeep-
       ing to avoid stepping the clock.

									  Note

       Because of significant changes in NTP version 3, you should check all scripts that use the ntpdate command for correct usage and output.

ERRORS

       A common problem is polling a server using the wrong query version number or wrong authentication key.  If either  occurs,  ntpdate  prints
       the following error message: 18 Apr 10:20:28  ntpdate(1192]: no server
	 suitable for synchronization found

       At boot time, if NTP is not configured, the ntpdate prints the following message: WARNING:  ntpdate cannot succeed, please check your
	 NTP configuration

EXAMPLES

       The  following command line sets the date and time after polling server host1.dec.com as a version 2 implementation: /usr/sbin/ntpdate -o 2
       host1.dec.com The following command line sets the date and time after polling server host2.dec.com.  All packets  are  authenticated  using
       authentication key 1.  /usr/sbin/ntpdate -a 1 host2.dec.com

FILES

       Specifies the command path Contains the encryption keys used by ntpdate

SEE ALSO

       Commands: ntpq(8), xntpd(8), xntpdc(8)

       Files: ntp.conf(4)

																	ntpdate(8)
All times are GMT -4. The time now is 02:52 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy