Slackware 15 : automatic continuous time syncing using ntpd – Mehdi Sadighian (مهدی صدیقیان)

vi /etc/ntp.conf

pool pool.ntp.org

minpoll 4
maxpoll 9

tos minclock 4 minsane 3 
tos maxclock 8

clock peer sync sys

info events status statistics
logconfig =allall
statsdir /var/lib/ntp/stats
logfile /var/log/ntp

driftfile /var/lib/ntp/drift

pidfile /var/run/ntpd.pid

restrict default limited kod nomodify notrap nopeer noquery
restrict -6 default limited kod nomodify notrap nopeer noquery
restrict 127.0.0.1
restrict ::1
restrict source limited kod nomodify notrap noquery

chmod 755 /etc/rc.d/rc.ntpd
/etc/rc.d/rc.ntpd restart

confirm:

ntpq -n -p

According to Slackware docs:

System services that should wait to start until the clock is stable can be preceded by the ntp-wait command, for example databases. For example, you could conceivably edit the MariaDB section of /etc/rc.d/rc.M to read:

# Start the MariaDB database:
if [ -x /etc/rc.d/rc.mysqld ]; then
  /usr/sbin/ntp-wait -v
  /etc/rc.d/rc.mysqld start
fi

for docker containers under slackware host:

read docker installation on slackware 15 HERE, then:

vi /etc/rc.d/rc.local

#!/bin/bash
#
# /etc/rc.d/rc.local:  Local system initialization script.
#
# Put any local startup commands in here.  Also, if you have
# anything that needs to be run at shutdown time you can
# make an /etc/rc.d/rc.local_shutdown script and put those
# commands in there.


if [ -x /etc/rc.d/rc.docker ]; then
  # Start Docker daemon:
  echo "Starting Docker daemon:    /etc/rc.d/rc.docker start"
  echo "Docker: Waiting fo System Time Sync"
  /usr/sbin/ntp-wait -n 10 -s 2 -v
  /etc/rc.d/rc.docker start
  echo "Docker daemon Started"
fi

Note:

the line

/usr/sbin/ntp-wait -v

-may cause delay on services start, up to 10 minutes

-the command may fail on Correct Time or Failed time Sync

if you can’t wait, force time sync with:

ntpdate -u pool.ntp.org

Note: if you are setting a wrong time to test the ntpd, consider this:

ntpd will refuse to set the clock if it’s too far out, and will just exit. I guess it’s to protect against some rogue NTP server giving it bogus time information. If a time server goes wrong and gives you info that is weeks/months/years out, it could cause havok for your server.

for testing purpose set the time to something nearly correct manually.

Note:

I’m in mood, so writing this note

having a correct time is important, but its dangerous for modern applications which produces/consumes data or services based on time. time attacks which can change the time on your server withing ntp or somehow you don’t know, will cause wrong data produce/consume/store.

if your are worry about this , consider writing a time travel detector script or program to avoid this attacks.

vi /etc/ntp.conf

confirm:

Note:

the line

/usr/sbin/ntp-wait -v

-may cause delay on services start, up to 10 minutes

-the command may fail on Correct Time or Failed time Sync

Note: if you are setting a wrong time to test the ntpd, consider this:

Note:

By: Mehdi SadighianContact: mehdi.sadighian@hotmail.comTAG: slackware, ntp, ntpd, continuous time sync

By: Mehdi Sadighian
Contact: mehdi.sadighian@hotmail.com
TAG: slackware, ntp, ntpd, continuous time sync