Re: NTP security hole CVE-2013-5211?

看板FB_security作者時間12年前 (2014/03/15 18:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串21/48 (看更多)
At 11:34 PM 3/14/2014, Xin Li wrote: >I can't reproduce with fresh install. How did you tested it (or what >is missing in the default ntp.conf), can you elaborate? I have tested it under actual attack. Without the lines I mentioned in /etc/ntp.conf, the server will respond to monitor queries with rejection packets of the same size as the attack packets. If the source addresses of the attack packets are spoofed, the attack is relayed. --Brett Glass _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 brett. 的文章
文章代碼(AID): #1J92JVuZ (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 21 之 48 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共48篇)
更多 brett. 的文章
文章代碼(AID): #1J92JVuZ (FB_security)