Yo Hal!
The ntp.conf man page needs a bit of work...
I added this to my ntp.conf:
nts enable
cert /etc/letsencrypt/live/kong.rellim.com/fullchain.pem
key /etc/letsencrypt/live/kong.rellim.com/privkey.pem
Fail.
2019-03-20T16:15:23 ntpd[21595]: NTSs: starting NTS-KE server listening on port
123
That should prolly mention tcp, as udp 123 is also used.
What is "NTSs"?
2019-03-20T16:15:23 ntpd[21595]: NTSs: can't load certificate (chain) from
/etc/ntp/cert-chain.pem
Uh, oh. I told it where to get the cert:
cert /etc/letsencrypt/live/kong.rellim.com/fullchain.pem
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
g...@rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
pgpLWh7SOJrLK.pgp
Description: OpenPGP digital signature
_______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
