[ntp:security] For To Know About NTP Amplification Attacks

Ronak Nayak ronak.nayak at einfochips.com
Tue Mar 17 10:30:16 UTC 2015




Hello,

         I have resolved NTP "monlist"  Feature Denial of Service Vulnerability by your recommended course of action.

Actually, that solution i found on your website on https://www.us-cert.gov/ncas/alerts/TA14-013A page.


Please, help me out about how can i validate that i have solved this issue.

Let me know about how to check that whether i resolved it or nor.


NTP Amplification Attacks Using CVE-2013-5211 | US-CERT
The NTP service supports a monitoring service that allows administrators to query the server for traffic counts of connected clients. This information is provided via the "monlist" command. The basic attack technique consists of an attacker sending a "get monlist" request to a vulnerable NTP server, with the source address spoofed to be the victim's address.
Read more...<https://www.us-cert.gov/ncas/alerts/TA14-013A>




Thanks,
Ronak Nayak
Engineer | PES?

[https://gallery.einfochips.com/Sign.png]       Tel: +917926467192 | Cell: +918000008699
Product Engineering Services
Software | System | Silicon | Mechanical
www.einfochips.com<http://www.einfochips.com/> | ronak.nayak at einfochips.com<mailto:ronak.nayak at einfochips.com>
For latest updates click on below icon:
[https://intranet.einfochips.com/images/newletter_footer/blog.png]<https://einfochips.com/blog/>  [https://intranet.einfochips.com/images/newletter_footer/linkedin.png] <https://www.linkedin.com/company/einfochips>   <https://www.facebook.com/eInfochips>
************************************************************************************************************************************************************* eInfochips Business Disclaimer: This e-mail message and all attachments transmitted with it are intended solely for the use of the addressee and may contain legally privileged and confidential information. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution, copying, or other use of this message or its attachments is strictly prohibited. If you have received this message in error, please notify the sender immediately by replying to this message and please delete it from your computer. Any views expressed in this message are those of the individual sender unless otherwise stated. Company has taken enough precautions to prevent the spread of viruses. However the company accepts no liability for any damage caused by any virus transmitted by this email. *************************************************************************************************************************************************************
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ntp.org/private/security/attachments/20150317/3b6ef511/attachment.html>


More information about the security mailing list