[168875] in North American Network Operators' Group
Re: Need trusted NTP Sources
daemon@ATHENA.MIT.EDU (Nick Hilliard)
Thu Feb 6 05:44:01 2014
X-Envelope-To: nanog@nanog.org
Date: Thu, 06 Feb 2014 10:43:42 +0000
From: Nick Hilliard <nick@foobar.org>
To: Notify Me <notify.sina@gmail.com>, "nanog@nanog.org list" <nanog@nanog.org>
In-Reply-To: <CACK8u8JroK3aXP3Pq=PcRvnEwzjT=jiQtJifmoKyk6D5WuRhDg@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 06/02/2014 10:03, Notify Me wrote:
> I'm trying to help a company I work for to pass an audit, and we've
> been told we need trusted NTP sources (RedHat doesn't cut it).
So presuming that your company is using RH or Fedora or CentOS something,
the auditors are claiming that Red Hat, Inc is trusted enough to provide a
precompiled based operating system with no feasible means of proving its
reliability, but that they're not trustworthy enough to provide a clock
synchronisation service?
My head spins.
Get new auditors. Your current ones are stupid.
Nick
