Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: "synchronisation lost" errors for Solaris NTP server
Operating Systems Solaris "synchronisation lost" errors for Solaris NTP server Post 303042092 by Neo on Friday 13th of December 2019 11:36:03 PM
Old 12-14-2019
Quote:
Originally Posted by jlliagre
NTP might be the least of the security issues here.

Running such an outdated and unpatched version of Solaris (17 years old!) in production is quite unreasonable. There are certainly hundreds of major vulnerabilities on that server. Moreover, assuming a firewall is protecting the server and NTP is the only visible service, you might have issues compiling a recent version of chrony for Solaris 9 anyway.
Well stated.

Let me be more to the point.

It is a total waste of time to be replying to anyone who is running a 17 year old OS (with a seriously flawed and out-of-date version of NTP), which could be replaced in a day for free with a modern OS (more secure, more reliable, not seriously flawed, and do a much better job for a NTP application).

The original poster is wasting our time, showing a lack of concern for our time, to ask us to sort out a problem on a 17 year old operating system (and not telling us before hand the version(s) they are running), which could be replaced by any "normal" system admin in less than a hour (for free, and do a better and more reliable job).

This is why I wish everyone here at unix.com would slow down (including myself at times) and stop answering questions from posters until the posters first describe the operation system, version numbers, etc. Some here are good at this, some of us are good at this sometimes and then forgot to ask, others seem to like to bypass the "understanding" phase and just post answers without any concern for the user's OS, versions, etc.

Everyone here (including me sometimes, but not often) needs to slow down and ask people who post questions to describe the OS, version, etc. before providing "quick" answers to questions. Jumping to "answers" before having the "right understanding" is not teaching people how to solve problems, it is contributing to the problem (in my view).

Perhaps I need to change the forum rules and make this a posting requirement in 2020?

Editorial Comment:

As a side note, the reason that most computers are hacked with ransomware or other easily acquired malware (easily purchased on the dark web) is that they are running unpatched, antiquated systems and obsolete code. Every system admin, organization and company must keep their computer operating systems up-to-date, fully patched and upgraded to the latest versions. This is very basic. Do not run vulnerable, obsolete code and antiquated operating systems. Update your operation systems, update your apps, make and maintain backups (onsite and offsite). Manage your IT systems, please.
 

9 More Discussions You Might Find Interesting

1. Filesystems, Disks and Memory

Restoring back files from "lost+found" directory

Hi Friends, How can I Restore the Files present under "lost+found" Directory of a FileSystem (in Solaris & Tru64 OS) to their original Locations. Now-a-days I am loosing lots of files in 2 of my Machines, One running Solaris8 and other Tru64(Digital) Unix. Thanx in... (1 Reply)
Discussion started by: dhasarath
1 Replies

2. UNIX for Dummies Questions & Answers

Can you force local NTP server to be accepted as "suitable"?

Is there some way to force the NTP server on a brand-new install to be "suitable" to sync other servers from? (I'm more concerned with synchronization between machines, and less concerned with what the actual time they sync to is) For example, whenever I install fresh from the Fedora DVDs and... (0 Replies)
Discussion started by: jjinno
0 Replies

3. Linux

NTP treshold "synchronisation lost"

does anyone know how to change the treshold of 128ms in NTP. in order to ignore these alarms: Oct 27 14:44:15 rt1 ntpd: synchronisation lost Oct 27 15:08:25 rt1 ntpd: time reset 0.688591 s Oct 27 15:08:25 rt1 ntpd: synchronisation lost Oct 27 15:28:45 rt1 ntpd: time reset 0.462257 s (0 Replies)
Discussion started by: modcan
0 Replies

4. UNIX for Advanced & Expert Users

All alias in .profile lost when "script" command is called

Hi, I was trying to call "script <an ip add>" command from .profile file to log everything whenever anyone logs in to this user. I did the following at the end of .profile. 1) Extracted the IP address who logged in 2) Called script < ip add> . The problem I am facing is all, aliases etc. written... (3 Replies)
Discussion started by: amicon007
3 Replies

5. AIX

"too big" and "not enough memory" errors in shell script

Hi, This is odd, however here goes. There are several shell scripts that run in our production environment AIX 595 LPAR m/c, which has sufficient memory 14GB (physical memory) and horsepower 5CPUs. However from time to time we get the following errors in these shell scripts. The time when these... (11 Replies)
Discussion started by: jerardfjay
11 Replies

6. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

7. Solaris

Printer configuration Migration from Solaris 10 "LP" to Solaris 11 "CUPS"

Need to find a way to import an LP printers.conf file to CUPS. I have some new Solaris 11.1 boxes that need to have 300 printers added. (0 Replies)
Discussion started by: os2mac
0 Replies

8. UNIX for Dummies Questions & Answers

"Help with bash script" - "License Server and Patch Updates"

Hi All, I'm completely new to bash scripting and still learning my way through albeit vey slowly. I need to know where to insert my server names', my ip address numbers through out the script alas to no avail. I'm also searching on how to save .sh (bash shell) script properly.... (25 Replies)
Discussion started by: profileuser
25 Replies

9. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

LEARN ABOUT HPUX

ntpdate

ntpdate(1M)															       ntpdate(1M)

NAME

       ntpdate - set the date and time via NTP

SYNOPSIS

       [ ] [ key# ] [ authdelay ] [ keyfile ]
	      [ version ] [ samples ] [ timeout ] server[ ... ]

DESCRIPTION

       sets  the local date and time by polling those Network Time Protocol (NTP) server(s) given as the server arguments to determine the correct
       time.  It must be run as root on the local host. A number of samples are obtained from each of the servers specified and a  subset  of  the
       NTP clock filter and selection algorithms are applied to select the best of these. Note that the accuracy and reliability of depends on the
       number of servers, the number of polls each time it is run, and the interval between the runs.

       can be run manually as necessary to set the host clock, or it can be run from the host startup script to set the clock at boot  time.  This
       is useful in some cases to set the clock initially before starting the NTP daemon

       It  is  also possible to run from a cron script. However, it is important to note that with contrived cron scripts is no substitute for the
       NTP daemon, which uses sophisticated algorithms to maximize accuracy and reliability while minimizing resource use. Finally, since does not
       discipline the host clock frequency as does the accuracy using is limited.

       Time adjustments are made by in one of two ways. If determines the clock is in error more than 0.5 seconds, it will simply step the time by
       calling the (see clocks(2)) system routine. If the error is less than 0.5 seconds, it will slew the time by calling  the  (see  adjtime(2))
       system routine. The latter technique is less disruptive and more accurate when the error is small, and works quite well when is run by (see
       cron(1M)) every hour or two.

       will decline to set the date if an NTP server daemon (e.g., is running on the same host. When running on a regular basis from as an  alter-
       native to running a daemon, doing so once every hour or two will result in precise enough timekeeping to avoid stepping the clock.

   Command Line Options
       supports the following options:

       Enable the authentication function and specify the key identifier to be
		      used  for authentication. The keys and key identifiers must match in both the client and server key files. The default is to
		      disable the authentication function.

       Force the time to always be slewed using the
		      system call, even if the measured offset is greater than The default is to step the time using the system call if the offset
		      is  greater than Note that, if the offset is much greater than it can take a long time (hours) to slew the clock to the cor-
		      rect value. During this time the host should not be used to synchronize clients.

       Force the time to be stepped using the
		      system call, rather than slewed (default) using the system call. This option should be used when called from a startup  file
		      at boot time.

       Enable the debugging mode, in which
		      will  go	through  all  the  steps,  but	not adjust the local clock.  Information useful for general debugging will also be
		      printed.

       Specify the processing delay to perform an authentication function as
		      the value authdelay, in seconds and fraction (see xntpd(1M) for details). This number is usually small enough to be negligi-
		      ble for most purposes, though specifying a value may improve timekeeping on very slow CPU's.

       Specify the path for the authentication key file as the string
		      keyfile.	The default is This file should be in the format described in

       Specify the NTP version for outgoing packets as the integer version,
		      which can be 1 or 2.  The default is 3. This allows to be used with older NTP versions.

       Specify the number of samples to be acquired from each server as the
		      integer samples, with values from 1 to 8 inclusive. The default is 4.

       Prints the offset measurement, stratum of the server(s) and delay
		      measurement without adjusting the local clock. This is similar to option which gives a more detailed debugging information.

       Divert logging output from the standard output (default) to the system
		      (see syslog(3C)) facility. This is designed primarily for convenience of scripts.

       Specify the maximum waiting time for a server response as the value
		      timeout,	in seconds and fraction. The value is rounded to a multiple of 0.2 seconds. The default is 1 second, a value suit-
		      able for polling across a LAN.

       Direct	      to use an unprivileged port for outgoing packets. This is most useful when behind a firewall, that blocks  incoming  traffic
		      to  privileged  ports, and you want to synchronise with hosts beyond the firewall. Note that the option always uses unprivi-
		      leged ports.

       Prints the     version number and the offset measurement information.

AUTHOR

       was developed by Dennis Ferguson at the University of Toronto.

FILES

       Contains the encryption keys used by

SEE ALSO

       adjtime(2), clocks(2), cron(1M), syslog(3C), ntpq(1M), xntpd(1M), xntpdc(1M).

       DARPA Internet Request For Comments RFC1035 Assigned Numbers.

																       ntpdate(1M)
All times are GMT -4. The time now is 11:08 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy