ntp.conf changes for NTS
Gary E. Miller
gem at rellim.com
Sat Feb 2 22:07:35 UTC 2019
Yo Achim!
On Sat, 02 Feb 2019 09:32:34 +0100
Achim Gratz via devel <devel at ntpsec.org> wrote:
> Gary E. Miller via devel writes:
> >> I think there is a reasonable parallel between get another server
> >> via DNS and get another server via NTS-KE.
> >
> > Yes, except the protocol, as defined in the Proposed RFC, does not
> > support it.
>
> Again, it supports it exactly the same way as the pool is currently
> working with DNS: You want another server, you ask another time.
Exactly why it is broken. No crypto. Unless you mean having an NTS-KE
server manage a pool. in chich case there is zero support for that
in any proposal. So will take years and be a new and different animal.
> The open question was if any of this can be made more efficient now
> that we ask an NTS-KE instead of a DNS server.
That changes the Proposed RFC. Out of scope.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190202/ee9bb2a7/attachment.bin>
More information about the devel
mailing list