This gist has migrated to the repo below.
Please submit new entries as pull requests to https://github.com/jauderho/nts-servers.
Initial source: https://docs.ntpsec.org/latest/NTS-QuickStart.html
This gist has migrated to the repo below.
Please submit new entries as pull requests to https://github.com/jauderho/nts-servers.
Initial source: https://docs.ntpsec.org/latest/NTS-QuickStart.html
@macifell I have checked out your link and I am unsure if it makes sense to keep the "Secure Source?" column. To me, that seems to imply more trust to certain systems where it is not possible to qualify.
I would rather just have a list of servers that folks can use decide for themselves which ones they want to trust and use. To that end and given that it appears not to be possible to generate pull requests against gists, I have gone ahead and created https://github.com/jauderho/nts-servers to make it easier to create a formal list that can accept pull requests.
I have taken a first stab at adding some entries. If you have your file in Markdown format, I will happily accept a pull request. Else, I will try to add to this when I have time. Eventually, I hope to retire this gist and redirect to the repo.
@jauderho That's a great idea! I do not want to have another competing list, I just want to make sure this information is kept up to date.
Whether or not an NTS server gets its time securely does play into the concept of trust, as it could just be repackaging insecure time:
https://netfuture.ch/2022/01/configuring-an-nts-capable-ntp-server/#upstream-server-choice
If there is no statement from the administrator and the observable source is not secure, then I think it is reasonable to determine that it is not as secure as it could be. While this isn't perfect, it would at least give someone a reason to ask about how this is being done - even if they trust the source individual or company. Of course, this information could be forged (or lied about), so trust of the administrator is the primary consideration. I do intend to ask the administrator of each server marked with an 'N' about how they get their time - and I also monitor this value over time and will mark additional sources as they show up.
That being said, I do not think it's necessary to include that information in the official list. I'm only keeping track of it in mine because I find it interesting.
@macifell I forgot to grab a copy of your list before you made it private. Could you make it public temporarily or post a copy in the comments so that I can format it as a starting point into Markdown? Thanks.
@jauderho I'm actually working on a pull request right now to add in those servers 🙂
@cadusilva Sure, no problem 🙂
Yeah, reverse DNS can be annoying (if not impossible) to set up and that NTP Score page is cool as a redirect.