Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 2 subscribers
  • Views 1813 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is this normal in UTM 9.2 ....

ledufakademy
ntp server is not hardened enought ?

ntpq -c rv "UTM92-IP"
associd=0 status=0615 leap_none, sync_ntp, 1 event, clock_sync,
version="ntpd 4.2.6p5@1.2349 Tue Feb  4 13:03:59 UTC 2014 (1)",
processor="x86_64", system="Linux/3.8.13.27-32.g5666955-smp64", leap=00,
stratum=3, precision=-22, rootdelay=55.022, rootdisp=65.708,
refid=37.187.107.140,
reftime=d82f3c76.fed524c4  Sun, Dec  7 2014 21:52:06.995,
clock=d82f3c98.714de5fe  Sun, Dec  7 2014 21:52:40.442, peer=54678, tc=7,
mintc=3, offset=0.498, frequency=-14.866, sys_jitter=0.752,
clk_jitter=0.624, clk_wander=0.086

... sophos utm and ntp stack is open .... 

"How can I check my server? - run the command ntpdc -n -c monlist 192.0.2.1 or ntpq -c rv 192.0.2.1 - If you see a response, your server may be used in attacks."

good job ...

bye


This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to ledufakademy
    it's crazy to see that people continue to deny the obvious when one wants to help them.


    I did not read Frank's response as a denial at all -- they are going to investigate it, as they should.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?