When it's not DNS, it's probably NTP

drewg123 · 2024-03-26T00:55:42

What's really fun is when you use a custom time protocol over TLS, but the host's clock is so far gone that the TLS cert is not valid. D'oh!

rajnathani · 2024-03-27T06:42:48

We noticed this in our custom embedded Linux device (at work), where when we didn't have the time sync with NTP turned on for boot (but rather a cron job at an interval further away from boot time) and that our RTC's coin cell was drained due to a small hardware bug, that at first when our API calls from the device were failing that we thought it was a hardware / software driver (WLAN) issue, but it fortunately turned out to be the innocuous issue of TLS failing due to the system clock being so off!

j16sdiz · 2024-03-26T02:10:33

That's what you got for NTP using domain name, with DNS over HTTPS.

piotrkaminski · 2024-03-26T03:25:24

Discussion of the original source: https://news.ycombinator.com/item?id=39324491

j16sdiz · 2024-03-26T00:50:12

This blog post is short and does not contain any material details. Not sure what to discuss on.

jtbayly · 2024-03-26T00:48:32

Or it’s DNS preventing your NTP domain from resolving, making it both…

I just had that happen a few weeks ago.