[Nix-dev] ntp monlist ddos vulnerability

[Eelco Dolstra]

On 24/02/14 17:27, Mathijs Kwik wrote:

> Our ntpd version (stable, 2011) contains a feature called 'monlist',
> which is enabled by default. This feature has recently been abused by
> huge ntp-amplification ddos attacks.

AFAIK, this commit works around the problem:

https://github.com/NixOS/nixpkgs/commit/9e7fe29e416736bf2be5aeaf7adbad05d4e175cf

-- 
Eelco Dolstra | LogicBlox, Inc. | http://nixos.org/~eelco/