At 11:34 PM 3/14/2014, Xin Li wrote: >I can't reproduce with fresh install. How did you tested it (or what >is missing in the default ntp.conf), can you elaborate? I have tested it under actual attack. Without the lines I mentioned in /etc/ntp.conf, the server will respond to monitor queries with rejection packets of the same size as the attack packets. If the source addresses of the attack packets are spoofed, the attack is relayed. --Brett Glass _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"