NTS update

Mike Simpson mikie.simpson at gmail.com
Fri Mar 22 22:16:43 UTC 2019 

> On 22 Mar 2019, at 22:07, Gary E. Miller via devel <devel at ntpsec.org> wrote:
> 
> Yo Hal!
> 
> On Fri, 22 Mar 2019 14:14:19 -0700
> Hal Murray via devel <devel at ntpsec.org> wrote:
> 
>>>>> 2019-03-22T12:55:52 ntpd[10362]: DNS: Server skipping:
>>>>> 2001:470:e815::23  
>> 
>>> Looking at this again, when kong connects to pi3, there is no
>>> duplicate connection.  
>> 
>> Then where did that skipping come from?  Either there is some other
>> server slot that has that IP Address, or the NTS path ran previously
>> and filled it in but something didn't take.  The retry path does
>> happen, but I think it clears out the old IP Address.
> 
> No idea...
> 
>> Try grepping the log files for that IP address.
> 
> Already did.  No duplicates.  Easy to do as I only need two minutes
> of uptime to see the issue.
> 
> I can make the logs available online if you wish.
> 
>>> But, I still want that option.   
>> 
>> You aren't going to get it in the short term.  I'm focused on things
>> that might be useful for the weekend hackathon.
> 
> Fair enough.  My 4 servers are listed on the hackathon page, with your
> code of course.  No other servers yet.
> 

My server khronos.mikieboy.net is also publicly available and running current so could be added for the hackathon. 

It’s a raspberry pi running latest raspbian. 

Mike



>> In the long term...  When a packet comes in, it does a hash lookup.
>> We'd need to add the NTS bit (and shared key number?) to that
>> hashing.  I think everything else just works from there.
> 
> What ever works.  I can live without it.  I just connect to two
> different IPs on the chimer.  One IPv4 and nts, the other IPv6 and
> no nts.  Hopefully a reverse dns name clash is OK.
> 
> RGDS
> GARY
> ---------------------------------------------------------------------------
> Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
>    gem at rellim.com  Tel:+1 541 382 8588
> 
>        Veritas liberabit vos. -- Quid est veritas?
>    "If you can’t measure it, you can’t improve it." - Lord Kelvin
> _______________________________________________
> devel mailing list
> devel at ntpsec.org
> http://lists.ntpsec.org/mailman/listinfo/devel

More information about the devel mailing list