NTS update
Gary E. Miller
gem at rellim.com
Wed Mar 20 23:19:26 UTC 2019
Yo Hal!
The ntp.conf man page needs a bit of work...
I added this to my ntp.conf:
nts enable
cert /etc/letsencrypt/live/kong.rellim.com/fullchain.pem
key /etc/letsencrypt/live/kong.rellim.com/privkey.pem
Fail.
2019-03-20T16:15:23 ntpd[21595]: NTSs: starting NTS-KE server listening on port 123
That should prolly mention tcp, as udp 123 is also used.
What is "NTSs"?
2019-03-20T16:15:23 ntpd[21595]: NTSs: can't load certificate (chain) from /etc/ntp/cert-chain.pem
Uh, oh. I told it where to get the cert:
cert /etc/letsencrypt/live/kong.rellim.com/fullchain.pem
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190320/7d0fedf7/attachment.bin>
More information about the devel
mailing list