On 20.05.2009, at 11:53, Hilton De Meillon wrote:
> Does anyone know if monowall is vulnerable to the new ntp
> vulnerabilites : CVE-2009-0159, CVE-2009-1252
m0n0wall only uses the sntp program (or its predecessor MSNTP in
earlier versions) from NTP, which is pretty much standalone and
doesn't use any code from ntpq or ntpd. Therefore, as far as I can
tell, it is not vulnerable to these particular NTP vulnerabilities.