Re: ntpd =< 4.0.99k remote buffer overflow

[Charles Sprickman]

On Wed, 4 Apr 2001, Przemyslaw Frasunek wrote:

> /* ntpd remote root exploit / babcia padlina ltd. <[EMAIL PROTECTED]> */

Just a quick note to save others a bit of legwork...  If you are running
ntpd on a machine simply as a client, the following line in /etc/ntp.conf
should keep people away:

restrict default ignore

Before adding this (I actually had the wrong syntax), the exploit crashed
ntpd.  Afterwords, not a blip, and ntpdate shows that ntpd is not
answering anything...

Charles