|
|
|
|
|
|
by e12e
4515 days ago
|
|
|
As I happen to have openntpd installed on a box I attempted to test this from (in Debian that package conflicts with ntp -- which includes the ntpdc client) -- I also found this: https://github.com/sensepost/ntp_monlist It at least correctly identifies ntp0.ovh.net as responding -- and seems to match up with what openntpproject.org thinks... [edit: apparently this (partly) also illustrates why more people should heed the advice to "run only what you need, listen only where you must" -- or in other words, make sure that: netstat -lnutp # listening, numerical, udp, tcp, program
gives essentially no output, at the very least not a lot of 0.0.0.0:x (listening on all interfaces). I'm always a little sad when people don't check that, and just throw up some complicated iptables-rules -- before checking if they're actually running some daemons that should be removed, or pointed at less public interfaces.] |
|
|