Preventing ntpd from adjusting time (backwards)
Chuck Swiger
cswiger at mac.com
Tue Apr 21 18:29:22 UTC 2009
On Apr 21, 2009, at 11:23 AM, Mel Flynn wrote:
> Now I'm also wondering how ntpd handles securelevel 2.
"man init" suggests that stepping the clock by more than a second is
disallowed:
2 Highly secure mode - same as secure mode, plus disks may not
be
opened for writing (except by mount(2)) whether mounted or
not.
This level precludes tampering with file systems by unmounting
them, but also inhibits running newfs(8) while the system is
multi-
user.
In addition, kernel time changes are restricted to less than
or
equal to one second. Attempts to change the time by more
than this
will log the message ``Time adjustment clamped to +1 second''.
Regards,
--
-Chuck
More information about the freebsd-questions
mailing list