>I have a question about OpenNTPD now that NTP reflection attacks are in >the news. OpenBSD produces and uses its own OpenNTPD, primarily written >by Henning and made portable by Darren Tucker. > >The following website: > > http://openntpproject.org/ > >is an important effort to minimize reflection-related holes in NTP >software. The given test command is not supported by OpenNTPD, >suggesting no major amplification. And after reading the manual pages I >don't think there's an alternative for getting OpenNTPD to generate a >large amplification, though I could be wrong. > >So, is it correct to say that OpenNTPD is immune from generating large >amplifications? (Recent articles on the subject mention 100x >amplification factors!)
OpenNTP does not contain the "test commands" or "protocol extensions" which caused the problems.
