Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
Don't update NTP (Network Time Protocol) due to the lack of a secure authentication mechanism
[Short Version]
NTP is very old and got several updates from time to time. It's basically from the ealier 80s.
The problem is that modern TLS connections increasingly rely on the system time as a part of security concepts. This affects OSCP revocation checks, HPKP and HSTS. All of these have security considerations that in one way or another expect the time of your system to be correct.
tlsdate is on way to fix that (see source link).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.