(www.ntp.org)

299 points gastonmorixe | 1 comments | 12 Nov 25 07:56 UTC | HN request time: 0s | source

Show context

mhovd ◴[12 Nov 25 10:53 UTC] No.45898645[source]▶

I am surprised that NTP project is not funded, fully or partially, by larger organizations or governments, given the criticality of the project.

replies(8): >>45898658 #>>45898731 #>>45898775 #>>45898921 #>>45899060 #>>45899179 #>>45899269 #>>45899540 #

nickelpro ◴[12 Nov 25 12:19 UTC] No.45899269[source]▶

>>45898645 #

The reference implementation, while historically important, has largely been displaced by more secure/performant implementations (ntpsec, chrony), or by in-house implementations (Amazon, Google).

Notably NTPd doesn't support leap-smear, which means those who absolutely must have monotonic time can't use it at all.

replies(3): >>45899310 #>>45899969 #>>45900271 #

tptacek ◴[12 Nov 25 13:36 UTC] No.45899969[source]▶

>>45899269 #

Who's running ntpsec?

replies(2): >>45900183 #>>45900286 #

mlichvar ◴[12 Nov 25 14:01 UTC] No.45900286[source]▶

>>45899969 #

The major Linux distributions replaced ntp with ntpsec. A better question would be who is still running ntp. I know about FreeBSD and NetBSD.

ntpsec as a project seems to be doing ok. They are releasing new versions, fix reported issues, accept patches, and develop the code publicly. While ntp still has a huge list of acknowledged but unfixed CVEs.

replies(2): >>45900644 #>>45901155 #

1. Palomides ◴[12 Nov 25 14:29 UTC] No.45900644{4}[source]▶

>>45900286 #

is that true? ubuntu and red hat for example use chrony or systemd-timesyncd

↑

Please donate to keep Network Time Protocol up – Goal 1k