当前位置:网站首页>Patch NTP server at the beginning of DDoS counterattack
Patch NTP server at the beginning of DDoS counterattack
2022-07-06 02:31:00 【zy18165754120】
According to the DDoS Defense company NSFOCUS call ,IT The industry seems to be right 2014 Relevant at the beginning of the year DDoS The warning of amplifying the increasing risk of attack has responded well , Patched a large number of vulnerable servers .
The US provider announced on Tuesday New statistics , call 3 Global vulnerability in January NTP The number of servers is about 21,000 platform ,5 The month fell again to 17,600 platform . This is lower than 2013 year 12 Of the month 432,120 people .
however , The system administrator still needs to finish the work . The report also claims that , It can enlarge the flow 700 Times more NTP The number of amplifiers has increased from 12 Of the month 1,224 One added to today's 2,100 individual .
“US-CERT And network time protocol strongly recommend that system administrators ntpd Upgrade to 4.2.7p26 Or later ,”NSFOCUS say .
“4.2.7p26 Users of earlier versions should use noquery To block all status queries , Or use disable monitor To disable ntpdc –c monlist command , At the same time, other status queries are still allowed .”
As early as 1 month , The United States CERT Just warn , Using public server NTP Zoom in DDoS The threat of attack is growing .
If it's not properly protected , The global NTP The ubiquity of servers makes them potentially dangerous agents for such attacks . A series of connected devices are used NTP To synchronize their clocks .
Attackers can get through “monlist” Query the last of the requests to connect to the server 600 individual IP List of addresses , Thus, it is quite easy to take advantage of open NTP The server .
Then what they need to do is disguise the source address as the victim's source address , Overwhelm them by sending a large number of results IT System .
Suggest upgrading to a new one NTP Version will be automatically disabled monlist function .
Network security company Incapsula stay 3 A project released in September DDoS Threat situation Research Show , since 1 Since the month ,NTP Amplification attacks have undergone a major shift , Maximum attack reached 180Gbps.
边栏推荐
- SSM 程序集
- [Digital IC manual tearing code] Verilog asynchronous reset synchronous release | topic | principle | design | simulation
- HttpRunnerManager安装(三)-Linux下配置myql数据库&初始化数据
- Black high-end responsive website dream weaving template (adaptive mobile terminal)
- 【机器人库】 awesome-robotics-libraries
- Looking at the trend of sequence modeling of recommended systems in 2022 from the top paper
- Bigder: I felt good about the 34/100 interview, but I didn't receive the admission
- Global and Chinese markets of general purpose centrifuges 2022-2028: Research Report on technology, participants, trends, market size and share
- How to generate rich text online
- 2345文件粉碎,文件强力删除工具无捆绑纯净提取版
猜你喜欢
米家、涂鸦、Hilink、智汀等生态哪家强?5大主流智能品牌分析
2022.02.13
Use the list component to realize the drop-down list and address list
剑指 Offer 29. 顺时针打印矩阵
Li Kou today's question -729 My schedule I
Overview of spark RDD
从顶会论文看2022年推荐系统序列建模的趋势
Minecraft 1.18.1, 1.18.2 module development 22 Sniper rifle
Audio and video engineer YUV and RGB detailed explanation
[Yunju entrepreneurial foundation notes] Chapter II entrepreneur test 15
随机推荐
[Digital IC manual tearing code] Verilog asynchronous reset synchronous release | topic | principle | design | simulation
【coppeliasim】高效传送带
机器学习训练与参数优化的一般过程 (讨论)
Keyword static
Number conclusion LC skimming review - 1
Li Kou today's question -729 My schedule I
Multi function event recorder of the 5th National Games of the Blue Bridge Cup
The third level of C language punch in
模板_快速排序_双指针
从顶会论文看2022年推荐系统序列建模的趋势
一个复制也能玩出花来
[Yunju entrepreneurial foundation notes] Chapter II entrepreneur test 17
Sword finger offer 30 Stack containing min function
Y a - t - il des cas où sqlcdc surveille plusieurs tables et les associe à une autre? Tout fonctionne dans MySQL
[eight part essay] what is the difference between unrepeatable reading and unreal reading?
Sword finger offer 29 Print matrix clockwise
Zero foundation self-study STM32 - Review 2 - encapsulating GPIO registers with structures
MySQL winter vacation self-study 2022 11 (7)
【机器人手眼标定】eye in hand
Structural theme model (I) STM package workflow