chrony.conf: comments for nmap and VPNs

2024-11-22 11:19:22 +01:00 · 2020-10-31 14:32:46 +02:00 · 2020-10-31 14:32:46 +02:00 · c55e6b97e8
commit c55e6b97e8
parent 0c7038da14
1 changed files with 9 additions and 1 deletions
--- a/etc/chrony/chrony.conf
+++ b/etc/chrony/chrony.conf
@ -1,8 +1,15 @@
 # Just a quick note on what I change on chrony, which is the servers.
 # DO NOT ACTUALLY PUT THIS FILE IN PRODUCTION, GREP COPY-PASTE INSTEAD?

+# Checking that something is an NTP server? Needs root
+#  nmap -sU -p 123 --script=ntp-info 192.168.0.1
+# Checking that something has NTS?
+#  nmap -p 4460 -Pn ntp.example.net
+
 ## NTS servers
 # Cloudflare NTS, anycast, works probably anywhere. No leap second smearing.
+# Maybe `prefer` it due to anycast and NTS which seems very rare and also
+# working with VPNs unlike country-local servers?
 #pool time.cloudflare.com maxsources 2 iburst nts

 ## NTP servers
@ -33,7 +40,8 @@

 # As more than one timeserver (that don't smear leap seconds) are good, keep
 # the provided vendor address intact/uncommented. Or maybe don't as per
-# their request on their website and I have enough timeservers.
+# their request on their website and I have enough timeservers. However
+# works well with always-on-VPN-use.
 #pool pool.ntp.org iburst

 # On pools, the default maxsources is 4 and pools would be resolved until