ntp.conf changes for NTS
Gary E. Miller
gem at rellim.com
Wed Jan 30 19:41:54 UTC 2019
Yo Richard!
On Wed, 30 Jan 2019 01:19:08 -0600
Richard Laager via devel <devel at ntpsec.org> wrote:
> So in this example, you have ntp.example.com as the NTS-KE server, and
> 1.2.3.4 or bob.example.com as the NTP servers? I assume it has to be
> that way, as TLS doesn't work _in practice_ (yes, I know it is
> supported in theory) with IP addresses, so 1.2.3.4 can't be the
> NTS-KE server.
Uh, no. I use TLS with IPs all the time. Not as functional as using
names, but it does work.
> If I understand Gary correctly, he's suggesting the opposite order:
Uh, no. If you have the NTS-KE name/ip, then you do not need/use the
NTPD server name/ip. I'd do with what you just described: 'nts' is
a keyword to change the meaning from NTPD server to NTS-KE server.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190130/ba331531/attachment.bin>
More information about the devel
mailing list