NTP is being fixed

I blogged a few days back that the network time protocol is not in the best shape and could be used to cause some computer security issues……

I’m sure you are all (like I was) interested in knowing what was being done about it…..

http://esr.ibiblio.org/?p=6881Interesting

In short, it’s going through a bit of a clean up.

A lot of people have gotten the idea that I’m engaged in a full rewrite of the code, however, and that’s not accurate. What’s actually going on is more like a really massive cleanup and hardening effort. To give you some idea how massive, I report that the codebase is now down to about 43% of the size we inherited.

This is one of the cool things about Linux and Open Source software, it’s open. People can look at bits of it, all of it, whatever they need. They can tweak bits of the code themselves, or submit changes to the pool.

Anyway, my point is, they are fixing this one…. I don’t think we are moving back from the edge, but it’s nice to know that it’s being addressed.