Deciding what modes to keep.
Eric S. Raymond
esr at thyrsus.com
Thu Sep 29 23:39:28 UTC 2016
Gary E. Miller <gem at rellim.com>:
> On Thu, 29 Sep 2016 19:19:28 -0400
> "Eric S. Raymond" <esr at thyrsus.com> wrote:
>
> > So, the question for our domain experts is, are there any serious use
> > cases for broadcast modes? They cost a lot in configuration and
> > code complexity; it would be nice to just drop them. How much
> > screaming might that cause from actual users?
>
> I don't care if there is a valid 'serious' use case or not. When
> someone tries to sell his boss on moving from NTP Classic to NTPsec
> he does not want to have to do a large use case analysis. There
> is a strong case for 'drop-in replacement' possible. Like the
> 'notrap' option.
But we have one mission imperative that trumps drop-in replacement:
security. And what makes these modes targets for removal is that,
according to Daniel, there are fundamentally impossible to secure.
I did in fact restore a dummy 'notrap' keyword so old configs
won't break. But that's because it had no security implications.
--
<a href="http://www.catb.org/~esr/">Eric S. Raymond</a>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 811 bytes
Desc: not available
URL: <http://lists.ntpsec.org/pipermail/devel/attachments/20160929/a5dbb929/attachment.bin>
More information about the devel
mailing list