xenial (1) tlsdate-helper.1.gz

NAME

       tlsdate-helper - secure parasitic rdate replacement

SYNOPSIS

       tlsdate-helper  host  port  protocol ca_racket verbose certdir setclock showtime timewarp leapaway proxy-
       type://proxyhost:proxyport httpmode

DESCRIPTION

       tlsdate-helper is a tool for setting the system clock by hand or by communication with  the  network.  It
       does  not  set  the  Real  Time Clock. It is designed to be as secure as TLS (RFC 2246) but of course the
       security of TLS is often reduced to whichever CA racket you believe is trustworthy. By default,  tlsdate-
       helper  trusts your local CA root store - so any of these companies could assist in a MITM attack against
       you and you'd be screwed.

       The proxy argument expects HTTP, SOCKS4A or SOCKS5 formatted as followed:

        http://127.0.0.1:8118
        socks4a://127.0.0.1:9050
        socks5://127.0.0.1:9050

       This tool is designed to be run by hand or as a system daemon. It must be run as root or  otherwise  have
       the proper caps; it will not be able to set the system time without running as root or another privileged
       user.

BUGS

       It's likely! Let us know by contacting jacob@appelbaum.net

       Note that tlsdate(1) is still in Alpha, and may not work as expected.

AUTHOR

       Jacob Appelbaum <jacob at appelbaum dot net>

SEE ALSO

       tlsdate(1), tlsdated(1) tlsdate-routeup(1) tlsdate-dbus-announce(1)