[ntp:questions] Meinberg Configuration Help
Brian Inglis
Brian.Inglis at SystematicSw.ab.ca
Sun Mar 2 02:16:00 UTC 2014
On 2014-03-01 15:43, boostinbadger at gmail.com wrote:
> My NTP server is part of the pool project and appears to be running fine. Comcast contacted me about a month ago to let me know that my NTP server was infected with a bot. I checked and everything seems to be ok. I re-enabled my server about a week ago and I received another phone call last week concerning security on my network.
> I contacted Ask and he said that it was not a bot but an issue with my server allowing management requests. I asked Ask how to properly configure my Meinberg client to not allow management requests because I understand that they can be problematic. I know the config for ntpd but I am not sure of the proper syntax for Meinberg. Can someone provide me with that info?
Banner on http://support.ntp.org links to
http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using
and recommends restrict default noquery [and possibly other no... options]
or you could use restrict default ignore; also add disable monitor.
--
Take care. Thanks, Brian Inglis
More information about the questions
mailing list