[Ninux-Calabria] Fwd: [Ninux-Wireless] DrDOS su ntp in corso su Internet
BornAgain
bornagain a autoproduzioni.net
Gio 13 Feb 2014 15:45:03 UTC
Inizio messaggio inoltrato:
> Da: Saverio Proto <zioproto a gmail.com>
> Data: 13 febbraio 2014 15.28.56 GMT+01.00
> A: wireless <wireless a ml.ninux.org>, "nodi-roma a ml.ninux.org" <nodi-roma a ml.ninux.org>
> Cc: contatti <contatti a ninux.org>
> Oggetto: [Ninux-Wireless] DrDOS su ntp in corso su Internet
> Rispondi a: wireless a ml.ninux.org
>
> C'e' in corso un attacco di tipo DrDOS, chi ha un server ntp dentro
> Ninux deve controllare di avere la configurazione giusta.
> Girate alle varie mailing lists delle isole.
>
> Riferimenti:
>
> http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using
>
> Understanding and mitigating NTP-based DDoS attacks (by John Graham-Cumming)
> http://blog.cloudflare.com/understanding-and-mitigating-ntp-based-ddos-attacks
>
> DRDoS / Amplification Attack using ntpdc monlist command
> http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using
>
> Team Cymru - Secure NTP Template
> https://www.team-cymru.org/ReadingRoom/Templates/secure-ntp-template.html
>
> Vulnerability Summary for CVE-2013-5211
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5211
>
> CERT/CC Vulnerability Note VU#348126 - NTP can be abused to amplify
> denial-of-service attack traffic
> http://www.kb.cert.org/vuls/id/348126
>
> Juniper - Mitigation of NTP amplification attacks involving JunOS
> http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10613&actp=SUBSCRIPTION
>
> US-CERT Alert (TA14-013A) - NTP Amplification Attacks Using CVE-2013-5211
> https://www.us-cert.gov/ncas/alerts/TA14-013A
>
> NTP DoS reflection attacks by Patrikas Kugrinas
> https://cert.litnet.lt/en/docs/ntp-distributed-reflection-dos-attacks
>
> Hackers Spend Christmas Break Launching Large Scale NTP-Reflection Attacks
> http://www.symantec.com/connect/blogs/hackers-spend-christmas-break-launching-large-scale-ntp-reflection-attacks
> _______________________________________________
> Wireless mailing list
> Wireless a ml.ninux.org
> http://ml.ninux.org/mailman/listinfo/wireless
-------------- parte successiva --------------
Un allegato HTML è stato rimosso...
URL: <http://ml.ninux.org/pipermail/calabria/attachments/20140213/184353de/attachment.htm>
-------------- parte successiva --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 536 bytes
Desc: Questa è un messaggio firmato elettronicamente
URL: <http://ml.ninux.org/pipermail/calabria/attachments/20140213/184353de/attachment.pgp>
Maggiori informazioni sulla lista
Calabria