[ntpsec commit] Note non-suppport of Autokey.

Eric S. Raymond esr at ntpsec.org
Tue Oct 6 04:13:12 UTC 2015 

Module:    ntpsec
Branch:    master
Commit:    2f3f9de3a15d0395eb0fab23d2621e1700d413ef
Changeset: http://git.ntpsec.org/ntpsec/commit/?id=2f3f9de3a15d0395eb0fab23d2621e1700d413ef

Author:    Eric S. Raymond <esr at thyrsus.com>
Date:      Mon Oct  5 22:36:19 2015 -0400

Note non-suppport of Autokey.

---

 docs/index.txt | 22 ++++++++++++++--------
 1 file changed, 14 insertions(+), 8 deletions(-)

diff --git a/docs/index.txt b/docs/index.txt
index 77bf74e..fecf31b 100644
--- a/docs/index.txt
+++ b/docs/index.txt
@@ -7,7 +7,6 @@ http://www.eecis.udel.edu/%7emills/pictures.html['P.T. Bridgeport Bear'; from 'P
 
 Pleased to meet you.
 
-Last update: 20-Mar-2015 05:30
 |==============================
 
 == Related Links ==
@@ -65,6 +64,13 @@ ship code that is security-hardened, simpler, drastically less bulky
 (the KLOC count of the suite has been cut by a factor of two!), easier
 to understand, and easier to maintain.
 
+We retain, however, almost full compatibility and interoperation with
+NTP Classic.  The qualification "almost" is required because we do not
+support the Autokey public-key encryption scheme. It had
+interoperability and exploitable vulnerability issues too severe to
+be patched. It will need redesign and reimplementation before it
+can be fielded again.
+
 This project began as an effort to address serious security issues
 with NTP Classic, and we intend to keep a particularly strong focus on
 code security and code verifiability.
@@ -81,6 +87,8 @@ few will be user-visible:
 * The deprecated ntpdate program has been replaced with a shell
   wrapper around sntp.
 
+* As noted above, Autokey support has been removed.
+
 [[platforms]]
 == Supported platforms ==
 
@@ -165,13 +173,11 @@ book and numerous background papers and briefing presentations.
 
 Background information on computer network time synchronization is on
 the http://www.eecis.udel.edu/%7emills/exec.html[Executive Summary -
-Computer Network Time Synchronization] page. Discussion on new features
-and interoperability with previous NTP versions is on the
-link:release.html[NTP Version 4 Release Notes] page. Background
-information, bibliography and briefing slides suitable for presentations
-are on the http://www.eecis.udel.edu/%7emills/ntp.html[Network Time
-Synchronization Research Project] page. Additional information is at the
-{project-shortname} web site {project-weblink}.
+Computer Network Time Synchronization] page. Background information,
+bibliography and briefing slides suitable for presentations are on the
+http://www.eecis.udel.edu/%7emills/ntp.html[Network Time
+Synchronization Research Project] page. Additional information is at
+the {project-shortname} web site {project-weblink}.
 
 '''''

More information about the vc mailing list