[ntp:security] [Bug 3077] [ntpd] send the ntp mode inormally cause ntpd deny of service

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Mon Oct 24 15:10:52 UTC 2016


https://bugs.ntp.org/show_bug.cgi?id=3077

Juergen Perlinger <perlinger at ntp.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |perlinger at ntp.org

--- Comment #3 from Juergen Perlinger <perlinger at ntp.org> 2016-10-24 15:10:52 UTC ---
I did some research on this, and the results are somewhat disturbing.

1.) The only programmatic way to set the source IP address of an outgoing UDP
packet is via the WSASendMsg() call. Which we do not use -- outgoing packages
are always sent via WSASendTo(), and the source IP is assigned by the IP stack.

2.) I found no way to set the IP source for outgoing UDP packets on the socket
level. AFAIK there is no way to do this.

3.) If the only way to fix this is really to restart the node (which translates
to 'reboot the system' for me) the error is persisting independently from the
NTPD process.

The conclusion would be that you actually unearthed a bug in the Windows IP/UDP
stack. Or somewhere below of that, but as far as I can tell, NTPD does in no
place attempt to set adapter adresses or supplant the outgoing source address.

Or am I missing something sinister here?

-- 
Configure bugmail: https://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the security mailing list