[ntp:questions] Public NTP server supporting authentication

Hans Jørgen Jakobsen hjj at wheel.dk
Sat Sep 15 15:51:56 UTC 2012


On Sat, 15 Sep 2012 08:42:02 -0500, Thomas Laus wrote:
> On 2012-09-14, anotst01 at fastmail.fm <anotst01 at fastmail.fm> wrote:
>> Some people are interested to use authenticated NTP for their linux
>> distributions. [1] [2]
>>
>> Obviously an identity scheme, where NTP server has its own private and
>> public key and all users need to have the the NTP public keys is
>> required. Typical private/public key scheme, just like gpg. Anything
>> else can not work if the wide public is supposed to verify the NTP
>> replies.
>>
> Isn't this the purpose of DNSSEC?  It allows you to trust the identity
> of the NTP host domain name.  If he is who he says he is, then the
> time that he serves is what he says it is.

How are you going to be shure that the ip addr are routed to the right
server?

/hjj
>
>



More information about the questions mailing list