* Brian Rak <[email protected]>: > So far, I've seen this exact situation play out multiple times. > Someone says 'What iptables rules do I need?' or 'I came up with > these iptables rules', and it turns out they still have monlist > enabled. These problems tend to go away when you disable monlist > (unless you're actually the target of an attack)
Are other commands not also amplifiers (to a somewhat lesser degree): http://lutz.donnerhacke.de/Blog/NTP-Angriffe-mit-weiteren-Kommandos (german, he's mentioning listpeers, peers and dmpeers= -- Ralf Hildebrandt Charite Universitätsmedizin Berlin [email protected] Campus Benjamin Franklin http://www.charite.de Hindenburgdamm 30, 12203 Berlin Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155 _______________________________________________ pool mailing list [email protected] http://lists.ntp.org/listinfo/pool
