Re: Default configuration of ntp-4.2.6p5-9 is vulnerable to DDoS participation

On Fri, Oct 3, 2014 at 1:54 PM, Bartosz Lis wrote: > Hello, > > See: https://bugzilla.redhat.com/show_bug.cgi?id=1047854 > > "users can disable monitor functionality using 'disable monitor' command in > the /etc/ntp.conf. Note that use of 'restrict' command with 'limited' flag > also enables moni

Default configuration of ntp-4.2.6p5-9 is vulnerable to DDoS participation

Hello, See: https://bugzilla.redhat.com/show_bug.cgi?id=1047854 "users can disable monitor functionality using 'disable monitor' command in the /etc/ntp.conf. Note that use of 'restrict' command with 'limited' flag also enables monitor functionality even when 'disable monitor' command is use