Special facilities

War Ukraine Russia

Hacking and protection ... NTP amplification attack ...

Attack with your time server: NTP amplification attack (CVE-2013-5211)

Атака с помощью вашего сервера времени: NTP amplification attack (CVE-2013-5211)

On January 13, the US Emergency Command Computer (US-CERT) issued a warning about a new method of DDoS attacks.

Infected computers send a monlist request with a fake IP address of the sender to the NTP server.

The query monlist returns a list of the last 600 ntpd clients.

Thus, a small request from the infected computer to the victim sends a large stream of UDP.

This is the essence of amplification.

An unprotected NTP server becomes an unwitting intermediary of the attack.

Attacks are subject to versions of ntpd to 4.2.7p26 (stable now 4.2.6p5).

To test your server for the vulnerability, you can run the following command:

ntpdc -c monlist адрес_сервера

If the command lists the clients (and not "timed out, nothing received"), then the system is vulnerable.

Elimination

Now there are at least 3 ways:

1) Update ntpd to version 4.2.7p26. In FreeBSD, update the ports and install ntpd from net / ntp-devel.

Without an upgrade, you can:

2) Disable the monlist in ntp.conf by adding the line disable monitor
3) Or disable any server status queries in the restrict restrict default kod nomodify notrap nopeer noquery restrict -6 default kod nomodify notrap nopeer noquery restrict default kod nomodify notrap nopeer noquery restrict -6 default kod nomodify notrap nopeer noquery

Perhaps you did not know at all that your NTP server is visible outside (- :.

Then disable access to it completely.

I ran into this problem back in November, when NTP traffic on my public NTP stratum1.net became 30GB per hour.

I noticed this not immediately, tk. Even on the Atom processor, the load was less than 5%.

Then I wrote a bash script that looked at the traffic statistics of the boundary firewall over the last half hour (via netflow) and automatically added a deny rule for too active clients. And after two months it became clear what it was.

Sources:

Support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using

Www.kb.cert.org/vuls/id/348126

Www.opennet.ru/opennews/art.shtml?num=38855

Liked? Subscribe to RSS news!
You can also support shram.kiev.ua, press:

It will not be superfluous for your friends to learn this information, share their article with them!

Expand / Collapse

Comments

Commenting on, remember that the content and tone of your message can hurt the feelings of real people, show respect and tolerance to your interlocutors even if you do not share their opinion, your behavior in the conditions of freedom of expression and anonymity provided by the Internet, changes Not only virtual, but also the real world. All comments are hidden from the index, spam is controlled.

All news

Site
Forum

The work will not make you rich - unlike the five things Photo 2017-03-10
Representatives of which zodiac signs will be the best wives. Bachelors on a note! Photo 2017-03-10
Exercises for eye health Photo 2017-03-10
How our favorite products looked before they were collected Photo 2017-03-10
The Japanese "Virginity Killer" Photo 2017-03-10
How to choose the right wine for your dish Photo 2017-03-08
How to dress by age and not look stupid Photo 2017-03-08
Sexual variant "Follow me" Photo 2017-03-08
Plate of healthy food Photo 2017-03-08
NASA has opened free access to its software Photo 2017-03-08
Kate Moss, the main beauty of the generation, the femme fatale Photo 2017-03-08
101 Method of application of the paracord Photo 2017-03-05
Everything you wanted to know about tires. Marking, types, seasonality Photo 2017-03-05
How to choose quality natural spices and spices Photo 2017-03-04
Emma Watson (26 years) undressed for the March Vanity Fair Photo 2017-03-04
Emma Watson (Emma Watson) undressed for Natural Beauty Photo 2017-03-04
Tattoo with the image of famous heroes Photo 2017-03-03
Scheme of all municipal transport in Kiev Photo 2017-02-28
How often to have sex according to age Photo 2017-02-28
Fisherman's calendar and forecast of the biting of peaceful / predatory fish for 2017 Photo 2017-02-26
Fishing knots, how to tie a hook, prepare for summer Photo 2017-02-26
Euthanasia Coaster, a project of roller coasters designed for the death penalty Photo 2017-02-26
VEB Page can be evidence in court Photo 2017-02-26
In such a cosplay, you yourself will want to play Photo 2017-02-25
A smart selection of girls from Japan. Photo 2017-02-25
GOI paste (from GOI - State Optical Institute) Photo 2017-02-24
Unnecessary things, which you should quickly get rid of Photo 2017-02-24
Harmful daily habits, because of which there is bloating Photo 2017-02-24
The levers of control of aircraft engines (ORE), it is not enough ... Photo 2017-02-24
Modern design of the Business card Photo 2017-02-23
Cats, artist Vladimir Rumyantsev Photo 2017-02-23

Work will not make you rich - unlike these five things All millionaires know about this. But silent.Charles Tips, a former scientist ... Photo 2017-03-10
Representatives of which zodiac signs will be the best wives. Bachelors on a note! In this material, we tried to project the behavior of those or ... Photo 2017-03-10
Exercises for eye health Shram.kiev.ua collected 10 simple exercises for the eyes that are easy to make ... Photo 2017-03-10
How our favorite products looked before they were collected We studied the fruits and vegetables that we buy in the supermarket, ... Photo 2017-03-10
Japanese "Virginity Killer" In Japan, a new trend: a sweater called Virgin-Killing Sweater or ... Photo 2017-03-10
How to choose the right wine for your dish The rule "red for meat, white for fish" is in effect ... Photo 2017-03-08
How to dress by age and not look stupid How long have you felt? Go, I suppose, like a pimple ... Photo 2017-03-08
Sexual version of "Follow Me" A few years ago, Russian photographers Murad and Natalia Osman created ... Photo 2017-03-08
A plate of healthy food Harvard University and modern science conducts numerous studies to optimize ... Photo 2017-03-08
NASA has opened free access to its software NASA has opened free access to the software catalog 2017-2018. How to ... Photo 2017-03-08
Kate Moss, the main beauty of the generation, the fatal woman Every generation has its own main beauty, a fatal woman, who ... Photo 2017-03-08
101 Paracord method of use For most people the paracord is known as a very convenient device with ... Photo 2017-03-05
Everything you wanted to know about tires. Marking, types, seasonality Tires are the main link between the car and the road. From the ... Photo 2017-03-05
How to choose quality natural spices and spices How to choose natural spices and spices in the market or in ... Photo 2017-03-04
Emma Watson (26 years old) undressed for the March Vanity Fair Emma undressed for the March Vanity Fair, true, on the cover ... Photo 2017-03-04
Emma Watson (Emma Watson) undressed for the book Natural Beauty Emma decided to do it for the book Natural Beauty! And she ... Photo 2017-03-04
A tattoo featuring famous heroes A bitane tattoo artist creates incredibly realistic tattoos with images of famous heroes ... Photo 2017-03-03
Scheme of all municipal transport in Kiev The scheme indicates all buses, trolleybus and tram routes, and ... Photo 2017-02-28
How often you need to have sex according to age Many are curious to know if they are having sex too much or too much ... Photo 2017-02-28
The calendar of the fisherman and the forecast of the biting of peaceful / predatory fish for 2017 There are certain phases of the luminary when you just need to be alone ... Photo 2017-02-26
Fishing knots how to tie a hook, prepare for the summer The type of knot is chosen taking into account the type of fishing line used (monofilament or ... Photo 2017-02-26

Cats. Artist Vladimir Rumyantsev. Photo 2017-02-23
Prometheus - Interesting Facts Photo 2017-02-23
Did you see the Lithuanian Cheerleaders? Worth Seeing! 2017-02-23
Olsen, Elizabeth / Elizabeth Olsen Photo 2017-02-23
She sat at the Window, And He Entered Her Car ... Photo 2017-02-23
Photo of Cats, Cats, Kitties Photo 2017-02-23
How the Turtle Can Run Photo 2017-02-23
Bengal Cat Talking With a Kitten 2017-02-23
National Bank Introduces New Coin to Circulation (Photo) Photo 2017-02-23
Protasov Yar 30 Years Ago Photo 2017-02-23
Photo of the Animals Photo 2017-02-23
Nasa Broadcast What's Reported At the Nasa Photo Conference 2017-02-23
Something, Size With Jupiter, Rushing "Through" the Sun Photo 2017-02-22
Central Streets of Kiev Will Be Blocked For Five Days Photo 2017-02-20
3 Folk Ways to Make the Vagina Narrow And Elastic Photo 2017-02-20
Monica Bellucci In The Magazine Gq Italy, February 2017 Photo 2017-02-20
The Serebro Group In Maxim Magazine, March 2017 Photo 2017-02-20
What to Do If You Have been Detained by Police - 146 Article Piracy Photo 2017-02-20
New Free Os has appeared Photo 2017-02-18
Wood Under the Electron Microscope Photo 2017-02-18
The Market of Payment Cards In 2016, Demonstrated a Significant Growth Photo 2017-02-18

Social

Your IP: 66.102.9.134
Your Country: USA
Your Region: California
Your City: Mountain View

Free 50 UAH for your Monobank card?