漏洞报告显示:
Medium (CVSS: 5.0)
NVT: NTP Monlist Feature Enabled
References
cve: CVE-2013-5211
Summary
NTP.org’s ntpd is prone to a remote denial-of-service vulnerability because it fails to properly handle certain incoming network packets.
Solution:
Solution type: VendorFix
Update to NTP.org’s ntpd 4.2.7p26 or newer or set ‘disable monitor’ in ntp.conf.
漏洞解决:根据建议升级版本或者关闭‘monitor’
这里处理的方法是“disable monitor”
1.查看ntp服务和monitor list
netstat –an|grep 123
ntpdc
ntpdc> monlist
ntpdc> quit
2.修改配置文件
echo "disable monitor" >> /etc/ntp.conf`
3.重启NTP服务
service ntpd restart
4.查看该服务已关闭
ntpdc
ntpdc> monlist
ntpdc> quit