-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 23 Aug 2020 16:44:08 -0500 Source: ntpsec Architecture: source Version: 1.1.9+dfsg1-2~bpo10+1 Distribution: buster-backports Urgency: medium Maintainer: Richard Laager <rlaager@debian.org> Changed-By: Richard Laager <rlaager@debian.org> Closes: 957616 Changes: ntpsec (1.1.9+dfsg1-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. - Revert: Switch to python3-gps - Revert: Drop as-needed linker flag - Revert: Drop ntpsec-ntpviz Suggests python - Revert: Switch to asciidoctor . ntpsec (1.1.9+dfsg1-2) unstable; urgency=medium . * Fix bogus port number in NTS-KE connecting message . ntpsec (1.1.9+dfsg1-1) unstable; urgency=medium . * New upstream version - Add AES and other algorithm support to ntpq and ntpdig, from OpenSSL. - The default restrictions now start with noquery and limited to reduce the opportunities for being used for DDoS-ing. - NTS (per the draft RFC) now requires TLS 1.3. - The config keyword tlsciphers has been removed. - Additional filtering and sort options have been added to ntpq/mrulist. - With "restrict limited", traffic is now limited to an average of 1 packet per second with bursts of 20. - SIGHUP and hourly checks have been unified. Both now: - check for a new log file - check for a new certificate file - check for a new leap file SIGHUP also restarts all pending DNS and NTS probes. - Defer loading certificate until after drop-root. This checks that file permissions are setup correctly so ntpd will be able to reload the certificate. - Fix ntpleapfetch to work with latest leap file. - This fixes building with GCC 10. (Closes: 957616) * Drop ntpsec-ntpviz Suggests python * Fix the certbot hook quoting * Switch to rlaager@debian.org * Switch to asciidoctor * Raise OpenSSL dependency * Start transition to port 4460 - ntpd in server mode now listens on both ports 123 and 4460. - ntpd in client mode now defaults to port 4460. * Upgrade to debhelper-compat 13 Checksums-Sha1: 9cddf88743c7fae2f416e9ee72e1db80410752b3 2393 ntpsec_1.1.9+dfsg1-2~bpo10+1.dsc c287749207b4c686cb7bb388e5cdb120f7ffde30 2233212 ntpsec_1.1.9+dfsg1.orig.tar.xz 3d1d4a2d994ed4fa38cba59f11e866a9430d103c 53476 ntpsec_1.1.9+dfsg1-2~bpo10+1.debian.tar.xz a7e28b0c81afde21e183715e4e815e9c98fecfec 7984 ntpsec_1.1.9+dfsg1-2~bpo10+1_source.buildinfo Checksums-Sha256: 7094dad8fd882b542ae405e967eec48eecf38f152ecf77ccaab6dc92d66bdef2 2393 ntpsec_1.1.9+dfsg1-2~bpo10+1.dsc 123630754fe49b437222185677d472887770d17642992b44375c74ece95ff2ee 2233212 ntpsec_1.1.9+dfsg1.orig.tar.xz a7da5e050ce4a6115420f1e2b03e1b40130fb760cbb9a8d50444b3c7ded43a41 53476 ntpsec_1.1.9+dfsg1-2~bpo10+1.debian.tar.xz d3ca1c047637e5c9097019e7e33c75f641598f59b0bb20ea475924840878bf4f 7984 ntpsec_1.1.9+dfsg1-2~bpo10+1_source.buildinfo Files: 561ff9d7d934b0750d21b304a569e2a4 2393 net optional ntpsec_1.1.9+dfsg1-2~bpo10+1.dsc a693f7ee6e938ac25c7031c69ab65f02 2233212 net optional ntpsec_1.1.9+dfsg1.orig.tar.xz 6ea09d2f7f43a6ea3642901060e1512a 53476 net optional ntpsec_1.1.9+dfsg1-2~bpo10+1.debian.tar.xz 731a057f0f76c083b32cc8ee70242ca3 7984 net optional ntpsec_1.1.9+dfsg1-2~bpo10+1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE1Ot9lOeOTujs4H+U+HlhmcBFhs4FAl9C5AcACgkQ+HlhmcBF hs6vrhAAjYA2b0ysO5ZXWD9A0x0tjZ4amPFcwx2BowstS0QhP/W6SMptGSKh/v5R YoC8KtG1FaHyJSGUgy+h437C1dRJ5Na/I5N2sNBJeIACAWXOsq+MlWOCLHwiKQYy 9Y//xr6yKO2yM5shY9Q4MYI5A2RC+qgHrebA2SeQu1+KjVUho/n4bSd+eilJXYoS OoibdY1i4KK4bV7MI0i7t2fsYwLKP4kQQosB9QD1WozZP5zOCcPasA/DF2Ok1Ak/ mGIXD4h7AdfUqVdYTKjHSPVuJa1gwyzJjhvlMbfrUkuEv21K7F3pSxRDsKbkysvF sHDjtlx4Wgd2d9i1QorZZp8W0GL5FyqGuE27RfSaSMj7Tnmh7sTMxfCxQw/T8k1p TguKfsrpGNcAj6FvBrYvGBGEi/eYq8HJkztwcy0DLjXszIVBPFjlYtd4BrAlMT+4 xrYC7iatqa4P357jzvPdd4e1uoFVyvoH+opKsUFtpr0ebG8/2g94EAnW6gpcgK34 UaTR+JpXB5+oHafgsUkBUcB+ROwtqE2MpNRL4wbQk1Y4gdUykWAeZu/lhmmPDxX/ 5SjKE79oN3Npdgp42rC0fhHw/xbtv3HysanMlbVxEw51w6sdYTiSHRBM1+eFkzxn ICFDn3eBhb/XkwBQGzYH1wcaP7vKidkmQdSFnI/ortNabMSkEZE= =zbVQ -----END PGP SIGNATURE-----
