and without 'limited' on ~5kpps I have 8-10% CPU regardless minitoring
enabled/disabled. About 1% on 1000pps.
(Hardware is old MS-9258 server, CPU Quad CPU Q940, FreeBSD 12.1)
As I see many limited queries really sourced from NAT, and we cannot
determine whether they are correct or not. So for
The current simple setup of something like
server ntp.example.com nts
depends on the OS root server collection.
Suppose you don't trust all those CAs. What can you do?
One option is to extract the appropriate certificate from the installed root
collection.
server ntp.example.com nts ca
T
https://www.zdnet.com/article/the-y2k-bug-is-back-causing-headaches-for-developers-again/
"Say you are an institution founded in 1920. It is safe to assume that you
are not sitting on any information dated from before then; and so, in the
double-digit date-recording system, "20" becomes your pivot
