> [WEG] +1. I don't know why we're so stressed about something so > simple.
not stressed out, though some coffee would help. brian is a crypto/security guy. he is validly worried that we could hit a problem. i suspect he is not too familiar with how we all config our networks, and that ntp, warts and all, is kind of assumed in all base configs. i suspect one key here is that, if the router has a time tick and loses it, it will be a looooong time before it loses sufficient accuracy that x.509 gloop will notice. and then all sorts of red flags will go up and our noc's bgp/snmp monitors will go bright red. another thought is that i am not sure we monitor time drift and ntp death in our routers. this would be a good thing if we're betting our buns on it. randy _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
