From 303f0a5a5429927e709adacc9ef2167f67651651 Mon Sep 17 00:00:00 2001
From: Owain Jones <owanes@noc.ac.uk>
Date: Tue, 19 Jan 2016 10:06:34 +0000
Subject: [PATCH] enable NTP

---
 install.sh | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/install.sh b/install.sh
index f176148..cdb0ffe 100644
--- a/install.sh
+++ b/install.sh
@@ -93,6 +93,7 @@ systemctl enable fail2ban
 # Allow web through the firewall
 systemctl enable firewalld
 systemctl start firewalld
+firewall-cmd --permanent --zone=public --add-service=ssh
 firewall-cmd --permanent --zone=public --add-service=http 
 firewall-cmd --permanent --zone=public --add-service=https
 firewall-cmd --permanent --zone=public --add-service=8080/tcp  # port 8080 for dev branch of site
@@ -101,6 +102,9 @@ firewall-cmd --reload
 # Set the system timezone to UTC
 timedatectl set-timezone UTC
 
+# And enable NTP, since for some reason it's not on by default..
+timedatectl set-ntp true
+
 # Install haveged to stop crypto stuff from hanging so much
 # when it depletes /dev/random..! (The bcrypt library on PHP
 # has a tendency to do this, which causes the occasional
-- 
GitLab