ntp.conf changes for NTS
Richard Laager
rlaager at wiktel.com
Thu Jan 31 22:45:01 UTC 2019
On 1/31/19 12:46 PM, Achim Gratz via devel wrote:
> Richard Laager via devel writes:
>> Here's another wrinkle. Does the first example, "nts
>> nts-ke.example.org", send a request for "nts-ke.example.org"? I think it
>> should.
>
> The RFC doesn't have an explicit preference, but it's implied that there
> is no server negotiation at all in this case, not from the client nor
> the NTS-KE. So in order to pin the NTS-KE as the server you'd need to
> do
>
> nts nts-ke.example.org require nts-ke.example.org
I agree that would be required to pin it. I wasn't asking to pin it by
default, just if ntpd should (as a client) always send a Server
Negotiation record. Given it's not required by the draft, it sounds like
you and Gary are leaning toward "no".
I don't have enough of a provable use case to argue further in favor of
always sending a Server Negotiation record.
--
Richard
More information about the devel
mailing list