>> As long as the old cookies on the client are used in NTP packets soon >> enough and hence traded in for new cookies, there is no need for a >> NTS-KE type rekey.
> Yeah, I had missed that. So I agree your concept looks good so far. Not my concept. Straight out of the book. (draft?) ------- > But the NTS-KE master key (K) has to match the NTPD master key (K). So they > are one and the same effect. That's easy when they are running in the same process. -- These are my opinions. I hate spam. _______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel