I've been studying DOS flood attacks, namely NTP and DNS floods. I know that monlist is the primary factor in launching these sorts of attacks, but I have one question. The problem is are these servers still dangerous without it it enabled? I mean if I tried to run a NTP packet flood without monlist enabled would it still cause a DOS attack or would nothing happen?
Asked
Active
Viewed 508 times
0
-
2NTP servers can still be abused for DoS, just not as badly as when monlist is enabled. – forest Nov 12 '18 at 03:20
1 Answers
1
I think that the monlist is used for amplify the attach basically, so no the case of amplification attacks I don't think is a problem, however, the NTP servers could still be used for DoS attacks but not with amplification capabilities.
camp0
- 2,172
- 1
- 10
- 10