Re: [chrony-users] rejecting one of two trusted hosts

[Miroslav Lichvar <mlichvar@xxxxxxxxxx>]

On Thu, Feb 10, 2022 at 03:05:46PM -0500, Aaron Ball wrote:
> server tick      minpoll 3 maxpoll 4 trust prefer iburst
> server tock      minpoll 3 maxpoll 4 trust prefer iburst
> server time-alt1 minpoll 3 maxpoll 4
> ...
> 
> If (say) tick starts sending bad time, we want chrony to declare it a
> falseticker on the basis of a majority made up of tock + time-alt1 + [other
> selectable servers] and continue to synchronize. We think this
> configuration used to do that on 3.2, and it looks like it doesn't anymore
> on 4.1.

This changed in 4.0 to better support configuration with NTS sources.
A majority is required among trusted sources to agree in order to pass
the selection. If we have two trusted sources and they don't agree
with each other, we know (at least) one of them is wrong, but I don't
think we should trust an untrusted source to decide which one.

It's the classic case of the man with two watches who doesn't know
what time it is. You need to add a third trusted source. If you are
willing to accept a majority with time-alt1, why is it not trusted?

-- 
Miroslav Lichvar


-- 
To unsubscribe email chrony-users-request@xxxxxxxxxxxxxxxxxxxx 
with "unsubscribe" in the subject.
For help email chrony-users-request@xxxxxxxxxxxxxxxxxxxx 
with "help" in the subject.
Trouble?  Email listmaster@xxxxxxxxxxxxxxxxxxxx.