[MacPorts] #44874: NTP needs to be upgraded urgently
MacPorts
noreply at macports.org
Wed Sep 3 22:10:51 PDT 2014
#44874: NTP needs to be upgraded urgently
-------------------------------+--------------------------------
Reporter: dave@… | Owner: macports-tickets@…
Type: update | Status: new
Priority: High | Milestone:
Component: ports | Version: 2.3.1
Keywords: ntp vulnerability | Port: sysutils/ntp
-------------------------------+--------------------------------
As I type this, my NTPD server is under a DoS attack from a botnet, using
a vulnerability known since late 2013. The ports tree urgently needs to
be upgraded to NTP 4.2.7.p26; it currently has 4.2.6, which is vulnerable.
I have since firewalled inbound ntp/udp, as I am not peering.
More information at
http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using
Please address. Thanks.
-- Dave
--
Ticket URL: <https://trac.macports.org/ticket/44874>
MacPorts <http://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list