<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><br><div><br><div>Inizio messaggio inoltrato:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(0, 0, 0, 1);"><b>Da: </b></span><span style="font-family:'Helvetica'; font-size:medium;">Saverio Proto &lt;<a href="mailto:zioproto@gmail.com">zioproto@gmail.com</a>&gt;<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(0, 0, 0, 1);"><b>Data: </b></span><span style="font-family:'Helvetica'; font-size:medium;">13 febbraio 2014 15.28.56 GMT+01.00<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(0, 0, 0, 1);"><b>A: </b></span><span style="font-family:'Helvetica'; font-size:medium;">wireless &lt;<a href="mailto:wireless@ml.ninux.org">wireless@ml.ninux.org</a>&gt;, "<a href="mailto:nodi-roma@ml.ninux.org">nodi-roma@ml.ninux.org</a>" &lt;<a href="mailto:nodi-roma@ml.ninux.org">nodi-roma@ml.ninux.org</a>&gt;<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(0, 0, 0, 1);"><b>Cc: </b></span><span style="font-family:'Helvetica'; font-size:medium;">contatti &lt;<a href="mailto:contatti@ninux.org">contatti@ninux.org</a>&gt;<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(0, 0, 0, 1);"><b>Oggetto: </b></span><span style="font-family:'Helvetica'; font-size:medium;"><b>[Ninux-Wireless] DrDOS su ntp in corso su Internet</b><br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(0, 0, 0, 1);"><b>Rispondi a: </b></span><span style="font-family:'Helvetica'; font-size:medium;"><a href="mailto:wireless@ml.ninux.org">wireless@ml.ninux.org</a><br></span></div><br><div>C'e' in corso un attacco di tipo DrDOS, chi ha un server ntp dentro<br>Ninux deve controllare di avere la configurazione giusta.<br>Girate alle varie mailing lists delle isole.<br><br>Riferimenti:<br><br><a href="http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using">http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using</a><br><br>Understanding and mitigating NTP-based DDoS attacks (by John Graham-Cumming)<br><a href="http://blog.cloudflare.com/understanding-and-mitigating-ntp-based-ddos-attacks">http://blog.cloudflare.com/understanding-and-mitigating-ntp-based-ddos-attacks</a><br><br>DRDoS / Amplification Attack using ntpdc monlist command<br>http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using<br><br>Team Cymru - Secure NTP Template<br>https://www.team-cymru.org/ReadingRoom/Templates/secure-ntp-template.html<br><br>Vulnerability Summary for CVE-2013-5211<br>http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5211<br><br>CERT/CC Vulnerability Note VU#348126 - NTP can be abused to amplify<br>denial-of-service attack traffic<br>http://www.kb.cert.org/vuls/id/348126<br><br>Juniper - Mitigation of NTP amplification attacks involving JunOS<br>http://kb.juniper.net/InfoCenter/index?page=content&amp;id=JSA10613&amp;actp=SUBSCRIPTION<br><br>US-CERT Alert (TA14-013A) - NTP Amplification Attacks Using CVE-2013-5211<br>https://www.us-cert.gov/ncas/alerts/TA14-013A<br><br>NTP DoS reflection attacks by Patrikas Kugrinas<br>https://cert.litnet.lt/en/docs/ntp-distributed-reflection-dos-attacks<br><br>Hackers Spend Christmas Break Launching Large Scale NTP-Reflection Attacks<br>http://www.symantec.com/connect/blogs/hackers-spend-christmas-break-launching-large-scale-ntp-reflection-attacks<br>_______________________________________________<br>Wireless mailing list<br>Wireless@ml.ninux.org<br>http://ml.ninux.org/mailman/listinfo/wireless<br></div></blockquote></div><br></body></html>