Research more secure htpdate time pool design
I can’t think of another area in which asking a hostile for advice is a
good idea. Maybe “if friend and foe both agree, you can be confident
that they’re right; if they disagree, look further” - but that’s not
what Tails htpdate is doing.
Indeed, it should probably discard information that is diverging too
much from what others tell us. Care to file a “research” ticket
mailing list thread:
Tails htpdate - why use time information from neutral and foe pools?
Please research if it was more secure if you had pal_pool_1, pal_pool_2, pal_pool_3 rather than neutral and foe pools.