←back to thread

Please donate to keep Network Time Protocol up – Goal 1k

(www.ntp.org)
299 points gastonmorixe | 2 comments | 12 Nov 25 07:56 UTC | HN request time: 0.431s | source
Show context
mhovd ◴[12 Nov 25 10:53 UTC] No.45898645[source]
I am surprised that NTP project is not funded, fully or partially, by larger organizations or governments, given the criticality of the project.
replies(8): >>45898658 #>>45898731 #>>45898775 #>>45898921 #>>45899060 #>>45899179 #>>45899269 #>>45899540 #
nickelpro ◴[12 Nov 25 12:19 UTC] No.45899269[source]
The reference implementation, while historically important, has largely been displaced by more secure/performant implementations (ntpsec, chrony), or by in-house implementations (Amazon, Google).

Notably NTPd doesn't support leap-smear, which means those who absolutely must have monotonic time can't use it at all.

replies(3): >>45899310 #>>45899969 #>>45900271 #
tptacek ◴[12 Nov 25 13:36 UTC] No.45899969[source]
Who's running ntpsec?
replies(2): >>45900183 #>>45900286 #
mlichvar ◴[12 Nov 25 14:01 UTC] No.45900286[source]
The major Linux distributions replaced ntp with ntpsec. A better question would be who is still running ntp. I know about FreeBSD and NetBSD.

ntpsec as a project seems to be doing ok. They are releasing new versions, fix reported issues, accept patches, and develop the code publicly. While ntp still has a huge list of acknowledged but unfixed CVEs.

replies(2): >>45900644 #>>45901155 #
tptacek ◴[12 Nov 25 15:09 UTC] No.45901155[source]
Which distributions use ntpsec?
replies(1): >>45901527 #
1. mlichvar ◴[12 Nov 25 15:41 UTC] No.45901527[source]
Current Debian, Ubuntu, Fedora, RHEL/CentOS (EPEL) have an ntpsec package, but no ntp package. It's not used by default (that's chrony on most of the distributions), but the users can install it and use it.
replies(1): >>45902384 #
2. akerl_ ◴[12 Nov 25 16:47 UTC] No.45902384[source]
Thats… not the same thing.