Am 04.07.2015 um 17:19 schrieb Achim Gratz:
Stefan Seyfried writes:
the runtime-configuration is not working:
susi:~ # start-ntpd addserver de.pool.ntp.org sntp 4.2.8p2@1.3265-o Wed Apr 22 00:47:12 UTC 2015 (1) 2015-04-27 16:11:03.350473 (-0100) +1.51105 +/- 1.009135 de.pool.ntp.org 85.25.105.105 s1 no-leap susi.home.s3e.de: timed out, nothing received ***Request timed out
Yes, that is because mode7 is disabled because ntpdc is deprecated now. Enabling it, I get a much faster startup of the ntpd, but still a
--8<---------------cut here---------------start------------->8--- Jul 04 17:06:10 Gertrud start-ntpd[12725]: Starting network time protocol daemon (NTPD)sntp 4.2.8p2@1.3265-o Thu Jun 25 12:05:31 UTC 2015 (1) Jul 04 17:06:10 Gertrud start-ntpd[12725]: 2015-07-04 17:06:10.788829 (-0100) +0.00147 +/- 0.028774 192.168.178.1 s3 no-leap Jul 04 17:06:10 Gertrud start-ntpd[12725]: ***Permission denied Jul 04 17:06:10 Gertrud /usr/sbin/start-ntpd[12752]: runtime configuration: keyid 1 passwd whatever addserver 192.168.178.1 quit --8<---------------cut here---------------end--------------->8---
I have the following in my ntp.conf and it works for me now: susi:~ # grep -Ev '^(#|$)' /etc/ntp.conf server 127.127.1.0 # local clock (LCL) fudge 127.127.1.0 stratum 10 # LCL is unsynchronized restrict -4 default kod notrap nomodify nopeer noquery restrict -6 default kod notrap nomodify nopeer noquery restrict 127.0.0.1 restrict ::1 driftfile /var/lib/ntp/drift/ntp.drift # path for drift file logfile /var/log/ntp # alternate log file keys /etc/ntp.keys # path for keys file trustedkey 1 # define trusted keys requestkey 1 # key (7) for accessing server variables enable mode7 One could think the ntp guys have been stealing idead from systemd: deprecating stuff while there is no replacement ;-) (I tried to do things with ntpq, and have been failing miserably. Even with the correct keyid/password, the :config server 1.2.3.4 always fails with an undecipherable error message. Actually all commands that need authentication fail, even though debug mode tells me Got an IPv6 packet, from <::1> (1) to <::1> (0) processing that packet receive: at 235 ::1<-::1 flags 5 restrict 000 in process_control() recv_len 44, properlen 24, wants auth with keyid 00000001, MAC length=20 authenticated okay
The permission denied is also happening when I'm trying to add the server by hand. The password is the same as in ntp.keys, but I can't tell if it has been accepted. I get the same message for any password, so I guess there would need to be further configuration.
probably the "restrict 127.0.0.1" line? -- Stefan Seyfried "For a successful technology, reality must take precedence over public relations, for nature cannot be fooled." -- Richard Feynman -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org