Yo Achim! On Mon, 14 Jan 2019 21:54:03 +0100 Achim Gratz via devel <devel@ntpsec.org> wrote:
> Hal Murray via devel writes:
> >> BTW, the number eight is not arbitrary: that is exactly the number
> >> of packets a burst poll would use.
> >
> > The normal case is that the client gets back a response before it
> > sends the next request in the burst, so it only needs 1 cookie to
> > start with.
>
> While I don't know what the rationale was for the RFC, it still makes
> sense to provide a client with enough cookies so it can fire off the
> initial burst w/o re-keying even if all responses get lost.
One is sufficient for that. Cookie reuse is fine.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
g...@rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
pgpyznDJ6p2IB.pgp
Description: OpenPGP digital signature
_______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
