NTP users are strongly urged to take immediate action to ensure that their NTP daemons are not susceptible to being used in distributed denial-of-service (DDoS) attacks. Please also take this opportunity to defeat denial-of-service attacks by implementing Ingress and Egress filtering through BCP38.
ntp-4.2.8p15
was released on 23 June 2020. It addresses 1 medium-severity security issue in ntpd, and provides 13 non-security bugfixes over 4.2.8p13.
Please see the NTP Security Notice for vulnerability and mitigation details.Are you using Autokey in production? If so, please contact Harlan - he's got some questions for you.
allison.radiks.net bernina.ethz.ch black-ice.cc.vt.edu calvus.rzs-hm.si chime.utoronto.ca chime1.surfnet.nl chrivh40.cch.com (198.147.37.140) churchy.udel.edu clock.netcetera.dk clock2.netcetera.dk clock.tricity.wsu.edu constellation.ecn.uoknor.edu delphi.cs.ucla.edu dominator.eecs.harvard.edu eagle.tamu.edu finch.cc.ukans.edu fuzz.sura.net gazette.bcm.tmc.edu hmljhp.rzs-hm.si kuhub.cc.ukans.edu lassen.slc.ca.gov libra.rice.edu ntp.adelaide.edu.au ntp.botbay.net ntp.ctr.columbia.edu ntp.landau.ac.ru ntp.olivetti.com ntp.pop-df.rnp.br ntp.terabyte.com.uabr ntp.to.themasses.org ntp.waikato.ac.nz ntp1.mpis.net ntp2.mpis.net ntp1.ossi.com ntp1.sura.net ntp2.ossi.com ntp2.sura.net salmon.maths.tcd.ie smart1.svi.org tick.anice.net.ar tick.koalas.com ticktock.wang.com ntp.cmr.gov time.deakin.edu.au time.esec.com.au time.nuri.net time.software.net tmc.edu tock.anice.net.ar truechimer.waikato.ac.nz vtserf.cc.vt.edu wuarchive.wustl.edu www1.cmc.ec.gc.ca www2.cmc.ec.gc.ca xfiles-jr.esa.lanl.gov xfiles.esa.lanl.govRelated Topics: StratumTwoTimeServers