FreeBSD Security Advisory FreeBSD-SA-16:16.ntp
Roger Marquis
marquis at roble.com
Sat Apr 30 16:34:58 UTC 2016
Large builds over NFS filesystems, particularly secure NFS (i.e.,
Kerberos) are one the best tests of time synchronization. Clients with
bad clocks can further exercise this not uncommon infrastructure. The
reason you don't typically see build errors even here, IME, is because
the timehosts tend to be shared by and local to both client and server.
Roger
Julian Stacey wrote:
> AMD + NFS makes on a LAN. 1/10 second seems insufficient.
> ( Though one could run a faster less secure NTP on a local LAN
> behind a firewall, & a slower more secure NTP on a WAN,
> (so a FreeBSD gate would need both NTPs ) ).
More information about the freebsd-security
mailing list