-
Notifications
You must be signed in to change notification settings - Fork 328
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
support Debian 12 / Bookworm / ntpsec #699
Comments
debian package transition code: |
It does break Debian 12 / bookworm somewhat. The ntpsec package ships with an apparmor profile and the old driftfile location (copied from ntp.conf) is denied:
The current state of the module renders ntp unmanaged on new installs and broken on upgraded systems. |
This at least starts ntpsec using the /etc/ntp.conf:
|
CAT-2100 claim to add support for Debian 12/Bookworm in version v11.0.0 but it is not the case: If you try to configure ntpsec with this module, it has no effect at all. |
Use Case
Debian 12/Bookworm switched their ntp package to ntpsec:
https://salsa.debian.org/debian/ntpsec/-/blob/debian/unstable/debian/NEWS
It is mostly a dropin replacement and the package copies configurations to new locations on upgrades so nothing breaks but you cannot modify the ntpd configuration via this module anymore after upgrade.
With a couple configuration changes it can be made to work so probably only few OS defaults need to be changed:
some other minor things, ntp::statsdir is not created by the package so it may be good if it is created by the module if set
setting
ntp::disable_auth: true
with ntpsec results in a syntax error warning during startup, other disable flags do seem to work.(ntpsec also supports
enable [auth |stats ...]
option)The text was updated successfully, but these errors were encountered: