[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: ntpd advisory not yet fixed?
Well, I think it's always a good idea to have:
restrict default kod nomodify notrap nopeer noquery
restrict -6 default kod nomodify notrap nopeer noquery
restrict -6 ::1
in ntp.conf, if the server is intended to serve the public Internet.
The issue can not be easily fixed without losing functionality, by the
way. We (FreeBSD) plans to issue an advisory that disables 'monitor'
feature by default on January 14.
On Fri, Jan 3, 2014 at 2:50 PM, John Klos <john%ziaspace.com@localhost> wrote:
> It looks like ntpd versions in netbsd-5 and netbsd-6 can be used for
> reflection attacks:
> Is anyone working on this?
Xin LI <delphij%delphij.net@localhost> https://www.delphij.net/
FreeBSD - The Power to Serve! Live free or die
Main Index |
Thread Index |