Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
E
E
exp1312014-01-20 13:34:15
FreeBSD
exp131, 2014-01-20 13:34:15

NTP reflection attack - amplification, how to check the server for vulnerabilities?

Greetings.
I rent a server from Hetzner. Today I received messages from them that 3 of my servers received identical abuses on the NTP reflection - amplification attack.
One is FreeBSD 9.0-RELEASE, the other two are 9.1-RELEASE-p2.
The odd thing is that the NTPd service is disabled on all three. I specifically turned it off at the beginning of the year, because. by default they open 123 UDP port outside.
Checks
ntpdc -c monlist XX.XX.XX.XX(XX.XX.XX.XX - IP address of tested servers)
Issue: Connection refused.
Tell me where to look for the cause?
There are no web servers on all servers, only FTP is on a non-standard port, SSH is also on a non-standard port and password authorization is disabled, only by key.
Login logs only show my connections from known IPs.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
S
Sergey, 2014-01-20
@bondbig

Write the same text to Hetzner?

Similar questions
D
d222014-01-20 13:19:27
How to add a new user mailbox to qmail under freebsd 7? 1Reply
A
Andrey2016-05-03 10:00:07
How can I migrate FreeBSD from a mirrored volume to a regular virtual disk? 1Reply
M
Maxim2014-03-03 12:24:57
What command can be used to trace the local address of a computer that is sending a lot of traffic? 1Reply
P
Pavel2016-05-04 10:18:57
Is it possible for Ipsec Mikrotik with gray IP + FreeBSD 10.2 with white IP? 3Reply
G
Gil Galad2021-12-19 17:50:21
Why does dhclient on FreeBSD 13 ignore setfib and write routes to the main table? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question