We are far enough down in the weeds that I have lost the big picture of this branch of the discussion.
I think we want to encourage servers that already have their own certificate to join the pool. That means minimal changes to their current NTP/NTS setup. "None" is the desired amount, but something minimal might be tolerable. We would need a HOWTO for each implementation. I don't see why you want to get into the certificate business. What is the advantage of using your certificates instead of Lets-Encrypt? -- These are my opinions. I hate spam. _______________________________________________ pool mailing list [email protected] http://lists.ntp.org/listinfo/pool
