[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
New Active Exploit: memcached on port 11211 UDP & TCP being exploited for reflection attacks
- Subject: New Active Exploit: memcached on port 11211 UDP & TCP being exploited for reflection attacks
- From: randy at psg.com (Randy Bush)
- Date: Fri, 02 Mar 2018 07:38:05 +0900
- In-reply-to: <CAL9jLaadL=D7C9S49eea1+gHDLY+NdpQy=2qDqfzVfrH36+-zg@mail.gmail.com>
- References: <[email protected]> <CAD6AjGQx__RNnWADF=TnaUBjN+fVpezQpM9qmFMF_G0KSj3LrQ@mail.gmail.com> <[email protected]> <[email protected]> <[email protected]> <CAB69EHiesHKr=57HYgiupD1sdV=5HURuVeo4+CVKFhdg0ONriw@mail.gmail.com> <[email protected]> <CAL9jLaadL=D7C9S49eea1+gHDLY+NdpQy=2qDqfzVfrH36+-zg@mail.gmail.com>
> this is sort of why openbsd listens only on 127.0.0.1/::1 by default,
> right? it's the only sane choice for 'fresh out of the box' network
> daemons: "Yes, it's running, yes I can healthcheck it locally to prove
> it's running"
amidst all the hysterical pontification, i am having trouble finding any
release which has, by default, a port 11211 listener on any interface.
randy