NTP security hole CVE-2013-5211?

Ferdinand Goldmann ferdinand.goldmann at jku.at
Tue Jan 14 14:06:04 UTC 2014


On 14.01.2014, at 14:06, Dag-Erling Smørgrav <des at des.no> wrote:

> Cristiano Deana <cristiano.deana at gmail.com> writes:
>> I tried several workaround with config and policy, and ended up you MUST
>> have 4.2.7 to stop these kind of attacks.
> 
> Doesn't "restrict noquery" block monlist in 4.2.6?

I think it should be possible to block it using:

disable monitor 

seems to work for me.

Best Regards,
Ferdinand Goldmann
-- 
>> Ferdinand Goldmann
>> Johannes Kepler University Linz - Information Management
>> Mail: Ferdinand.Goldmann at jku.at Phone: 00437024683925 Fax: 00437024689397
>> A lack of planning on your part doesn't constitute an emergency on my part.



More information about the freebsd-security mailing list