[Pool] NTP amplification attack?

oliver domke mail at piflix.de
Thu Jul 23 22:42:16 UTC 2015


I got an abuse message today regarding an alleged ntp amplification attack,
but I'm pretty sure that it's a confugiration problem on the other side.
The guy sent me the following log-line:

Jul 22 18:20:55 voip ntpd[2743]: sendto(5.9.29.107): Operation not permitted


After some googling I think it's a firewall problem on the "voip" machine,
not an attack from 5.9.29.107 (my machine).
Can anyone confirm that?

Thanks in advance!

*Oliver Domke*
+49 1575 663 66 53 | mail at piflix.de | Brünestr. 69, DE-52531 Übach-Palenberg


More information about the pool mailing list