看板FB_security
標 題Re: NTP security hole CVE-2013-5211?
發信站NCTU CS FreeBSD Server (Fri Jan 10 05:08:41 2014)
轉信站ptt!csnews.cs.nctu!news.cednctu!FreeBSD.cs.nctu!.POSTED!freebsd.org!ow
On 09.01.2014 19:38, Palle Girgensohn wrote:
> They recommend at least 4.2.7. Any thoughts about this?
Other than updating ntpd, you can filter out requests to 'monlist' command
with 'restrict ... noquery' option that disables some queries for
the internal ntpd status, including 'monlist'.
See
http://support.ntp.org/bin/view/Support/AccessRestrictions for details.
Eugene Grosbein
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "
[email protected]"