From owner-freebsd-current@FreeBSD.ORG  Wed Nov 27 15:29:15 2013
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 40F2F7B1
 for <freebsd-current@freebsd.org>; Wed, 27 Nov 2013 15:29:15 +0000 (UTC)
Received: from mail-ve0-x229.google.com (mail-ve0-x229.google.com
 [IPv6:2607:f8b0:400c:c01::229])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 064A126B1
 for <freebsd-current@freebsd.org>; Wed, 27 Nov 2013 15:29:14 +0000 (UTC)
Received: by mail-ve0-f169.google.com with SMTP id c14so5421690vea.28
 for <freebsd-current@freebsd.org>; Wed, 27 Nov 2013 07:29:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:date:message-id:subject:from:to:content-type;
 bh=Fk7HJ1rroncxKyp9TdG3paZ13Ls1KYgOWy7xzE25RUI=;
 b=c3bIQ7oZC8AqoMcdL3JZHSxEsoISAPFm5p0aEuG+TVCsqXLGbqHmWQvOI63RvflEeP
 jntrJOLf6SGZnrzPyU1881hO9MdfidJATl60t2qCUmkehMx6uBwP2HfrjgDieCBkIbBs
 ZgOhb1T37+CzXhmQ+vfiXNNJG917QBcqFknHWzcWYQHRCTkGreKwIBE3kDFQB90VlSc5
 LEbqnFFwgOhAeshGMkBZB9lb5OMxeKibhgVIkpWuhISCajYfLMvxA32QVtIRz2G+tSPu
 gpNosH+Udwm1ejmvgPUUFQTSrDts3pxsRub6NJX31XJPSovMPOmNgGXTcifk9FhixzGp
 4XmA==
MIME-Version: 1.0
X-Received: by 10.58.11.73 with SMTP id o9mr34749416veb.8.1385566154099; Wed,
 27 Nov 2013 07:29:14 -0800 (PST)
Received: by 10.221.63.6 with HTTP; Wed, 27 Nov 2013 07:29:14 -0800 (PST)
Date: Wed, 27 Nov 2013 16:29:14 +0100
Message-ID: <CAO82ECHMS-JUWC4TGwZpfU0opKE-2rOgW8RLOiR23RzVKgFJ3w@mail.gmail.com>
Subject: [request] ntp upgrade
From: Cristiano Deana <cristiano.deana@gmail.com>
To: freebsd-current@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1
X-Content-Filtered-By: Mailman/MimeDel 2.1.16
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.16
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Nov 2013 15:29:15 -0000

Hi,

is it possible to include in base system of the upcoming 10.0 the new
version of ntp (4.2.7 instead of 4.2.4)?

There is a bug in older versions (< 4.2.7) who allows attacker use an ntp
server to DDoS. This has been corrected in new version:
https://cert.litnet.lt/en/docs/ntp-distributed-reflection-dos-attacks

This attack seems to be increasing in the last few weeks.

net/ntp-devel is Ok.

Thank you, sorry for my basic english.

-- 
Cris, member of G.U.F.I
Italian FreeBSD User Group
http://www.gufi.org/