+++ This bug was initially created as a clone of Bug #1166596 +++
Description of problem:
When ntpd is configured with a restrict directive using the limited option, disabling the monitoring facility with "disable monitor" will have no effect.
ntpd should print a warning to syslog when that happens to avoid unknowingly allowing the monlist amplification attack (CVE-2013-5211).
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. add "limited" to the default restrict lines in /etc/ntp.conf
2. add "disable monitor" to /etc/ntp.conf
3. start ntpd
no warning in syslog, that monitor couldn't be disabled
warning in syslog
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.