NTP security hole CVE-2013-5211?
RW
rwmaillists at googlemail.com
Fri Mar 21 16:23:21 UTC 2014
On Thu, 20 Mar 2014 22:20:52 -0600
Brett Glass wrote:
> At 03:37 PM 3/20/2014, Ronald F. Guilmette wrote:
>
> >Starting from these lines in my /etc/ntp.conf file:
> >
> >server 0.freebsd.pool.ntp.org iburst
> >server 1.freebsd.pool.ntp.org iburst
> >server 2.freebsd.pool.ntp.org iburst
> >
> >I resolved each of those three host names to _all_ of its associated
> >IPv4 addresses. This yielded me the following list:
> >
> >50.116.38.157
> >69.50.219.51
> >69.55.54.17
> >69.167.160.102
> >108.61.73.244
> >129.250.35.251
> >149.20.68.17
> >169.229.70.183
> >192.241.167.38
> >199.7.177.206
> >209.114.111.1
> >209.118.204.201
>
> [Snip]
>
> All of this is good.
When you use a vendor pool or pool.ntp.org, you get a random selection
of servers in your local region. According to www.pool.ntp.org that's
869 for North America, and 2495 for Europe.
More information about the freebsd-security
mailing list