| ▲ | qmr 11 hours ago |
| Gah, just when you think you can trust time.nist.gov Suggestions from the community for more reliable alternatives? |
|
| ▲ | evanriley 9 hours ago | parent | next [-] |
| > Gah, just when you think you can trust time.nist.gov You still can... If you're that considered about 5 microseconds:
Build your own Stratum 1 time server https://github.com/geerlingguy/time-pi or just use ntppool https://www.ntppool.org/en/ |
| |
| ▲ | beala 7 hours ago | parent | next [-] | | It sounds like GPS, and thus a GPS-based stratum 1 server, uses these time servers, but they were successfully failed over: > Jeff finished off the email mentioning the US GPS system failed over successfully to the WWV-Ft. Collins campus. So again, for almost everyone, there was zero issue, and the redundancy designed into the system worked like it's supposed to. So failures in these systems are potentially correlated. The author mentions another solution. Apparently he runs his own atomic clock. I didn’t know this was a thing an individual could do. > But even with multiple time sources, some places need more. I have two Rubidium atomic clocks in my studio, including the one inside a fancy GPS Disciplined Oscillator (GPSDO). That's good for holdover. Even if someone were jamming my signal, or my GPS antenna broke, I could keep my time accurate to nanoseconds for a while, and milliseconds for months. That'd be good enough for me. | | | |
| ▲ | eddyg 8 hours ago | parent | prev [-] | | Be aware that there are members of the NTP pool with less-than-honorable intentions and you don't get to pick-and-choose. Yes, they all should provide the time, but they also get your IP address. For example: unlike the IPv4 space, the IPv6 space is too big too scan, so a number of "researchers" (if you want to call them that) put v6-capable NTP servers in the NTP pool to gather information about active v6 blocks to scan/target. | | |
| ▲ | ticoombs 8 hours ago | parent | next [-] | | Do you have any acticles or references about this? That would be great research (pun intended) to find out | |
| ▲ | edoceo 8 hours ago | parent | prev [-] | | Is this one of those extraordinary claims that requires evidence? Or is it generally true that there are homey-pots in many of these services (NTP, mirrors, etc) |
|
|
|
| ▲ | ianburrell 9 hours ago | parent | prev | next [-] |
| Most places that need accurate time get it from GPS. That is 10-100 ns. Also, you can use multiple NIST servers. They have ones in Fort Collins, CO and Gaithersburg, MD. Most places shouldn't use NIST directly but Stratum 1 name servers. Finally, NTP isn't accurate enough, 10-100 ms, for microsecond error to matter. |
|
| ▲ | ssl-3 6 hours ago | parent | prev | next [-] |
| Yes. Use NTP with ≥4 diverse time sources, just as RFC 5905 suggests doing. And use GPS. (If you're reliant upon only one source of a thing, and that thing is important to you in some valuable way, then you're doing it wrong. In other words: Backups, backups, backups.) |
|
| ▲ | ajkjk 9 hours ago | parent | prev | next [-] |
| their handling it responsibly seems like more evidence for trusting them, not less? |
|
| ▲ | vel0city 7 hours ago | parent | prev | next [-] |
| Use the other servers as well: https://tf.nist.gov/tf-cgi/servers.cgi For instance, time-a-wwv.nist.gov. One should configure a number of different NTP sources instead of just a single host. |
|
| ▲ | monster_truck 9 hours ago | parent | prev [-] |
| I'm more concerned about what you think they did to earn your trust in the first place |
