[c-nsp] NTP DDoS
Mark Tinka
mark.tinka at seacom.mu
Mon Feb 17 21:53:44 EST 2014
On Tuesday, February 18, 2014 04:29:31 AM Aaron wrote:
> My gosh! NTP ddos attacks are coming like crazy lately.
> Y'all getting hit ?
>
> I'm going to need to setup a bgp injection thingy with my
> upstream providers to signal a /32 for my victim(s) in
> my network so I can selective blackhole traffic in the
> cloud prior to it hitting my internet links..... this is
> getting really bad
It's been an issue since early last month.
Be sure to have ACL's for your NTP sessions from your
routers/switches/AP's/e.t.c., as well as patched
NTP/filtered servers to eliminate attack surfaces.
Mark.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20140218/3f47edb3/attachment.sig>
More information about the cisco-nsp
mailing list