SSDP is used by some consumer-level equipment for network discovery. It does not have any real use on public servers and is used for reflection DDoS attacks on dedicated servers.

On Windows machines, SSDP is run through the 'SSDP Discovery' service. To disable this:

  1. Click Start, type 'services.msc'
  2. Find the SSDP service, right click it, and choose Properties
  3. Change 'Startup Type' to Disabled
  4. Click 'Stop'
  5. Click OK

On Linux machines SSDP is generally run through some type of UPNP server. The exact one varies significantly.

For Linux, we suggest blocking this with an iptables rule, such as:

iptables -I INPUT 1 -p udp -m udp --dport 1900 -j DROP

這篇文章有幫助嗎? 0 用戶發現這個有用 (0 投票)

熱門文章

Securing SNMP (Linux / Windows)

SNMP is used for remote monitoring and configuration of dedicated servers. If you have not...
Securing NTP (Linux Only)

NTP is used for ensuring the time on your dedicated server is accurate. Some configurations of...
Enabling and basic configuration of the firewall settings (Linux / Ubuntu)

Enabling the firewall will help you protect your dedicated server from unwanted connections to...
Disable Recursive DNS (Linux / Windows)

DNS is used to translate hostnames into IP addresses. When DNS servers are misconfigured, they...
Changing the Default SSH Port (Linux / Ubuntu / Debian)

SSH is one of the most commonly attacked services as it provides easy access to full control of a...