[ntp:hackers] NTP DoS attack blog post

Hal Murray hmurray at megapathdsl.net
Tue Feb 25 05:05:19 UTC 2014


stenn at ntp.org said:
> OK, and the instant thought in my head is that I wonder if it would be a
> good idea for peer relationships to allow the recipient to set a bit in its
> response that says "hey, since we're already talking how about you take my
> answer and use it to build a response back to me so I can sych to you, too."

> IE, A sends B a packet with T1.  B gets it, assigns T2 and T3, sends back to
> A along with the "back at me" bit, and A gets this and fills in T4 for
> itself.  A can also take this packet and copy T3 and T4 to a new packet as
> T1 and T2, fill in T3, and send the packet back to B. 

I think you are describing the way peer works.  Except there is no bit.  Each 
end just waits until the next pooling cycle comes along to send the next 
packet.

That's all theory.  I haven't looked at the code or the wire.


-- 
These are my opinions.  I hate spam.





More information about the hackers mailing list