GSP
Quick Navigator

Search Site

Unix VPS
A - Starter
B - Basic
C - Preferred
D - Commercial
MPS - Dedicated
Previous VPSs
* Sign Up! *

Support
Contact Us
Online Help
Handbooks
Domain Status
Man Pages

FAQ
Virtual Servers
Pricing
Billing
Technical

Network
Facilities
Connectivity
Topology Map

Miscellaneous
Server Agreement
Year 2038
Credits
 

USA Flag

 

 

Man Pages
TLSDATE(1) User Manuals TLSDATE(1)

tlsdate-helper - secure parasitic rdate replacement

tlsdate-helper host port protocol ca_racket verbose certdir setclock showtime timewarp leapaway proxy-type://proxyhost:proxyport httpmode

tlsdate-helper is a tool for setting the system clock by hand or by communication with the network. It does not set the Real Time Clock. It is designed to be as secure as TLS (RFC 2246) but of course the security of TLS is often reduced to whichever CA racket you believe is trustworthy. By default, tlsdate-helper trusts your local CA root store - so any of these companies could assist in a MITM attack against you and you'd be screwed.

The proxy argument expects HTTP, SOCKS4A or SOCKS5 formatted as followed:

http://127.0.0.1:8118 socks4a://127.0.0.1:9050 socks5://127.0.0.1:9050

This tool is designed to be run by hand or as a system daemon. It must be run as root or otherwise have the proper caps; it will not be able to set the system time without running as root or another privileged user.

It's likely! Let us know by contacting jacob@appelbaum.net

Note that tlsdate(1) is in Beta, and may not work as expected.

Jacob Appelbaum <jacob at appelbaum dot net>

tlsdate(1), tlsdated(8), tlsdated.conf(5)
OCTOBER 2012 Linux

Search for    or go to Top of page |  Section 1 |  Main Index

Powered by GSP Visit the GSP FreeBSD Man Page Interface.
Output converted with ManDoc.