Hi, just found out that i cannot run ntpd daemon as non root
user under VE , since ntpd uses lcap and linux capabilites are disabled in OpenVZ, so is there other way to run ntpd as non root
Also i see in the ntpd log inside VE
step-systime: Operation not permitted
probably meaning the system time cannot be changed from VE.
Is there a way to run ntpd server inside VE?
Maybe ntpd can be configured not to modify the system time , but report to the clients it's internal and not HN VE0 time?
time inside VE is not virtualized and all VEs uses the same clocksource taken from HN. If you are sure that you want to allow to change system time from inside VE, you can allow CAP_SYS_TIME capability via "vzctl set <VEID> --capability sys_time:on", IMHO it should be enough for make ntpd working.
I want to run ntpd under openvz container to serve clients only, so they can sync with me.
I.e. HN runs ntpd to sync system time from external sources. One of CT runs ntpd to allow local clients to sync from it.
I don't want to sync clients with HN, neither I want to allow CT to modify system time. Is this possible?