I’ve got a VPS with Yunohost 2.5 running and yesterday I got a strange email form the german Federal Office for Information Security, that the Shadowserver foundation did a scan on my system and found an open mDNS Service on my host and that this is dangerous :
“mDNS services openly accessible from anywhere on the Internet can be abused for DDoS reflection attacks against third parties. (…) We would like to ask you to check this issue and take appropriate steps to close the openly accessible mDNS services on the affected systems.”
Is this really a problem? How can I make the mDNS-service secure?
I’ve got the follwing YH-Apps installed:
- Custum Web App
- Shell In A Box
More about the scan: