[I've bee off doing other things so the script "adjustments" got delayed a little.]
Anwar Shiekh wrote:
Personally I'd not worry overtly about documentation, but rather plugging this vulnerability in the simplest way possible. A separate installer for 10.5 might be best, without a script to compile the code (I can send you the files you need).
Sorry but I don't agree. When I download sources from places like sourceforge, ntp.org, and the like I prefer to build ALL that is built and if I agree with what the install phase creates (I always use configure --prefix to a private directory initially to check and verify what a build and subsequent install would actually install). I usually don't editorialize too much on what's created. In my option if it's worth doing, it is worth doing all of it.
In the case of ntp I think you do want the documentation particularly since sampling the ntpd.8 man page. It was dated "August 2, 2001". I think that's a bit old considering the current documentation for ntpd.8 is "January 24 2015". Not only that Apple apparently goofed on 10.6 installs because they installed a duplicate set of man pages in man1 which are even older ("2007-09-10"). I verified they are on my 10.6.4 installer dvd. That's not even the proper place to have man pages for this stuff. Man8 is.
At any rate I am not doing anything about the man1 mistake but I believe I solved all my problems with the documentation and other man pages. So I think I now have a version of my script ready for testing. It seems to work on my test boot (which I am using as I write this -- version ntp-4.2.8p1-RC1). It will be interesting to see how it behaves on 10.5, particularly the handling of ntpd-wrapper.
I posted the script on Zippyshare (a media sharing/file locker site, reasonably fast, no captcha's). Here's the link:
http://www63.zippyshare.com/v/FyFb7h1i/file.html
It's a zip file which you need to expand. I made sure that it downloads ok and it appears to keep its permissions across the upload/download. But in case it doesn't for you change the file to be executable.
Read the man page at the front of the file (hey, maybe you can proof it for me😉), give it a try, and let me know how it goes.
Thanks in advance.