[Info-vax] Warning: Your VMS system may be attacking other systems
Michael Moroney
moroney at world.std.spaamtrap.com
Sat Feb 1 13:17:49 EST 2014
bill at server2.cs.scranton.edu (Bill Gunshannon) writes:
>How about blocking all ntp traffic both in and out at your firewall
>except for the specific address of your ntp peers?
That will work if you are using fixed, static addresses.
If you are using one of the round-robin systems such as 0.us.pool.ntp.org
(like I am), the address changes every so often, and that firewall rule
will break NTP. (0.us.pool.ntp.org may translate to 1.2.3.4 one time and
a few seconds later be 5.6.7.8)
More information about the Info-vax
mailing list