On Mon, May 19, 2014 at 01:13:05PM -0700, Michael Evans wrote: > > The default shipped configuration file /may/ be secure, but does not > adequately document /why/ it is secure. Previous versions of the > AccessRestrictions documentation (prior to likely someone early this year > when the NTP reflection attacks became popular) appeared to advise removing > the noquery attribute
Please say where this appeared to have been adviced. I can't remember this ever being recommended, at least not in the documentation. I think the comment in the default config file we ship should also be more than clear enough. I think this is mostly a problem for people *not* reading documentation or comments. Kurt -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
