NTS update
Gary E. Miller
gem at rellim.com
Wed Mar 20 21:52:48 UTC 2019
Yo Hal!
On Wed, 20 Mar 2019 12:10:25 -0700
Hal Murray via devel <devel at ntpsec.org> wrote:
> Gary said:
> > I' waiting for Gentoo to have the required openssl version.
>
> It should work -- unless Gentoo is using something really
> pre-historic.
Ah, Gentoo unstable updated to openssl 1.1.0j on March 6th.
Do I need any change in basic NTPsec build?
> [New cookie timer set to an hour rather than a day.]
> > What I am worried bout is inrush to the NTS-KE server.
> > ...
>
> No problem. Old cookies work for another cycle.
OK, but they still time out all at once, on the "another cycle".
> So if the polling
> interval is faster than 3600/8 they work without any extra NTS-KE.
Uh, lost me...
> The hour is only a hack for debugging. We will set it to a day
> before release.
Only if you figure out how to not have a huge daily rush to rekey.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190320/4b4d0474/attachment.bin>
More information about the devel
mailing list