Which of the following is a method of mitigating NTP attacks?
Table of Contents
Which of the following is a method of mitigating NTP attacks?
The combination of disabling monlist on NTP servers and implementing ingress filtering on networks which presently allow IP spoofing is an effective way to stop this type of attack before it reaches its intended network.
How do I protect my NTP server?
Some steps that can be taken to mitigate this:
- Actively monitor system logs.
- Configure your NTP clients to ignore the panic threshold on restart.
- If you’re already using multiple NTP servers, increase the minimum number of servers required before the NTP clients adjust the clocks.
How secure is NTP protocol?
NTP can be secured well with symmetric keys. Unfortunately, the server has to have a different key for each client and the keys have to be securely distributed. That might be practical with a private server on a local network, but it does not scale to a public server with millions of clients.
What are the best practices for managing NTP?
Seven best practices for NTP resiliency
- Have at least four NTP servers.
- Consider your network layout.
- Ensure stratum architecture is consistent.
- Consider site resilience.
- Don’t use the NTP pool exclusively.
- When it comes to redundancy, latency matters.
- Avoid time loops.
What is VM clock drift?
VMware® virtual machines use several techniques to minimize and conceal differences in timing performance, but the differences can still sometimes cause timekeeping inaccuracies and other problems in software running in a virtual machine. When this occurs, it’s called time drift.
What is TCP protocol vulnerability?
There is a vulnerability in TCP which allows remote attackers to terminate network sessions. Sustained exploitation of this vulnerability could lead to a denial of service condition; in the case of BGP systems, portions of the Internet community may be affected.