disable ntp server on host, start working on ddospot

2025-07-02 01:27:27 -04:00 · 2021-07-09 23:16:19 +00:00
parent 0867d8f011
commit 2aa4c3c2c6
4 changed files with 113 additions and 0 deletions
--- a/update.sh
+++ b/update.sh
@ -251,6 +251,24 @@ mkdir -vp /data/adbhoney/{downloads,log} \
         /data/p0f/log \
 	 /home/tsec/.ssh/

+### For some honeypots to work we need to ensure ntp.service is not listening
+echo "### Ensure ntp.service is not listening to avoid port potential port conflict with ddospot."
+myNTP_IF_DISABLE="interface ignore wildcard
+interface ignore 127.0.0.1
+interface ignore ::1"
+
+if [ "$(cat /etc/ntp.conf | grep "interface ignore wildcard" | wc -l)" != "1" ];
+  then
+    echo "### Found active ntp listeners and updating config."
+    echo "$myNTP_IF_DISABLE" | tee -a /etc/ntp.conf
+    echo "### Restarting ntp.service for changes to take effect."
+    systemctl stop ntp.service
+    systemctl start ntp.service
+  else
+    echo "### Found no active ntp listeners."
+fi
+
+
 ### Let's take care of some files and permissions
 chmod 770 -R /data
 chown tpot:tpot -R /data