[Info-vax] Warning: Your VMS system may be attacking other systems
Jan-Erik Soderholm
jan-erik.soderholm at telia.com
Sat Feb 1 12:56:48 EST 2014
Stephen Hoffman wrote 2014-02-01 17:26:
> On 2014-02-01 15:40:58 +0000, Michael Moroney said:
>
>> There is a NTP-based DDOS going on, and VMS systems will participate.
>> ...
>> I'll reply to this when I find a good way to handle this.
>
> Here’s a write-up on and a workaround for the NTP DDoS, pending an upgrade
> to a newer version of NTP:
>
> https://isc.sans.edu/forums/diary/NTP+reflection+attack/17300
>
> This is the US CERT alert:
>
> https://www.us-cert.gov/ncas/alerts/TA14-013A
>
> I'd expect the workaround applies to OpenVMS, as well.
>
I might have misunderstood the workaround, but is it not for
an NTP server to stop it replying to the monlist command?
The workaround will not protect the target (VMS) system (?).
Jan-Erik.
More information about the Info-vax
mailing list