Date: Thu, 09 Jan 2014 21:08:41 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: Palle Girgensohn <girgen@FreeBSD.org> Cc: freebsd-security@freebsd.org Subject: Re: NTP security hole CVE-2013-5211? Message-ID: <52CEAD69.6090000@grosbein.net> In-Reply-To: <B0F3AA0A-2D23-424B-8A79-817CD2EBB277@FreeBSD.org> References: <B0F3AA0A-2D23-424B-8A79-817CD2EBB277@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 09.01.2014 19:38, Palle Girgensohn wrote: > They recommend at least 4.2.7. Any thoughts about this? Other than updating ntpd, you can filter out requests to 'monlist' command with 'restrict ... noquery' option that disables some queries for the internal ntpd status, including 'monlist'. See http://support.ntp.org/bin/view/Support/AccessRestrictions for details. Eugene Grosbein
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?52CEAD69.6090000>