| [chrony-users] ntp symmetric auth for internal clients |
[ Thread Index |
Date Index
| More chrony.tuxfamily.org/chrony-users Archives
]
- To: chrony-users@xxxxxxxxxxxxxxxxxxxx
- Subject: [chrony-users] ntp symmetric auth for internal clients
- From: Ede Wolf <listac@xxxxxxxxxxxxxxxx>
- Date: Mon, 2 Sep 2024 12:48:42 +0200
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=nebelschwaden.de; s=1687803001; t=1725274124; bh=Nwa8zHxqUsZDiIP2LRxBXjbm5n8nMlBjsbnx4d+l58I=; h=Date:Reply-To:To:From:Subject:From; b=u9JCoiCkABBvqsSAmhKqlSb3MA8+Gfd/hO4NT6kiJL6aDOUmMX7JDPP1mKER00eQK ZPLR7Ndy3AJsMzOCnRaKvdAgbw7DyBG5Ar95pxvVY05w6bWxopNTQNWGABnYd9aAbk hqyAIacDmpc6YhA0rVOvvcCzTS8yVGG07AL+9Y2uOtoIgjW/e1++dVreLCliqEliZY /bEmitNnf303fIAUUkiGhHAsKY3DaNCjDFzNTGsQYbnLOi8zbQQS73tEpShaZ9o3PD sszBfgDugIU+Gwa8VmVua1ORGHXzWpX1lJlBHLn+NlX3eSyS6HnGfkXdLC6XWIId9p pvCOk11wks/Yw==
Hello,
I am struggeling to figure out, how to use classic ntp auth (not nts)
for internal clients - as there are and will be for quite time also
some isc ntp servers to be served.
Now, the server directrive, that allows for a key, is for the external
(internet) server, or the source, so a keyid here would make no sense.
I need to specify a key for the systems I am serving to, however, the
local directrive has no key option available.
And a global option, similar to "trustedkey 5" in ntpd.conf, for those
who are also familiar with ntpd, seems also not available.
So if I want to require, let's say key 5 for internal clients, what
would be the proper way to archive this?
The keyfile in question only features sha1 hashes, so I am not running
into any 160 bytes limitations.
Thanks for any clues or points to according documentation
Ede
--
To unsubscribe email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "unsubscribe" in the subject.
For help email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "help" in the subject.
Trouble? Email listmaster@xxxxxxxxxxxxxxxxxxxx.