diff options
author | Jacob Appelbaum <jacob@appelbaum.net> | 2012-11-08 00:35:51 -0800 |
---|---|---|
committer | Jacob Appelbaum <jacob@appelbaum.net> | 2012-11-08 00:35:51 -0800 |
commit | a1285db5c3c580bdf39006481ad554cea5243d61 (patch) | |
tree | 292486bbf47e3b7c131ebfb998a3426b644b8756 /man | |
parent | 951ebf0e9fa05d0625b54946945f5d70fe065d50 (diff) | |
download | tlsdate-a1285db5c3c580bdf39006481ad554cea5243d61.tar.gz |
Update man page to reflect deep loathing for hyphen-used-as-minus-sign
Diffstat (limited to 'man')
-rw-r--r-- | man/tlsdate.1 | 28 | ||||
-rw-r--r-- | man/tlsdated.1 | 40 |
2 files changed, 34 insertions, 34 deletions
diff --git a/man/tlsdate.1 b/man/tlsdate.1 index 068855f..cec512d 100644 --- a/man/tlsdate.1 +++ b/man/tlsdate.1 @@ -5,8 +5,8 @@ .SH NAME tlsdate \- secure parasitic rdate replacement .SH SYNOPSIS -.B tlsdate [-hnvVstl] [-H [hostname]] [-p [port]] [-P [sslv23|sslv3|tlsv1]] \ -[--certdir [dirname]] [-x [--proxy] proxy-type://proxyhost:proxyport] +.B tlsdate [\-hnvVstl] [\-H [hostname]] [\-p [port]] [\-P [sslv23|sslv3|tlsv1]] \ +[\-\-certdir [dirname]] [\-x [\-\-proxy] proxy\-type://proxyhost:proxyport] .SH DESCRIPTION .B tlsdate is a tool for setting the system clock by hand or by communication @@ -20,26 +20,26 @@ This tool is designed to be run by hand or as a system daemon. It must be run as root or otherwise have the proper caps; it will not be able to set the system time without running as root or another privileged user. .SH OPTIONS -.IP "-h | --help" +.IP "\-h | \-\-help" Print the help message -.IP "-s | --skip-verification" +.IP "\-s | \-\-skip\-verification" Skip certificate verification -.IP "-H | --host [hostname|ip]" +.IP "\-H | \-\-host [hostname|ip]" Set remote hostname (default: 'www.ptb.de') -.IP "-n | --dont-set-clock" +.IP "\-n | \-\-dont\-set\-clock" Do not set the system clock to the time of the remote server -.IP "-p | --port [port]" +.IP "\-p | \-\-port [port]" Set remote port (default: '443') -.IP "-P | --protocol [sslv23|sslv3|tlsv1]" +.IP "\-P | \-\-protocol [sslv23|sslv3|tlsv1]" Set protocol to use when communicating with server (default: 'tlsv1') -.IP "-C | --certdir [dirname]" +.IP "\-C | \-\-certdir [dirname]" Set the local directory where certificates are located (default: '/etc/ssl/certs') This allows for certificate or certificate authority (CA) pinning. To ensure that signatures are only valid if they are signed by a specific CA or certificate, set the path to a directory containing only the desired certificates. -.IP "-x | --proxy [proxy-type://proxyhost:proxyport]" +.IP "\-x | \-\-proxy [proxy\-type://proxyhost:proxyport]" The proxy argument expects HTTP, SOCKS4A or SOCKS5 formatted as followed: http://127.0.0.1:8118 @@ -47,11 +47,11 @@ The proxy argument expects HTTP, SOCKS4A or SOCKS5 formatted as followed: socks5://127.0.0.1:9050 The proxy support should not leak DNS requests and is suitable for use with Tor. -.IP "-v | --verbose" +.IP "\-v | \-\-verbose" Provide verbose output -.IP "-V | --showtime" +.IP "\-V | \-\-showtime" Show the time retrieved from the remote server -.IP "-t | --timewarp" +.IP "\-t | \-\-timewarp" If the local clock is before RECENT_COMPILE_DATE; we set the clock to the RECENT_COMPILE_DATE. If the local clock is after RECENT_COMPILE_DATE, we leave the clock alone. Clock setting is performed as the first operation and will @@ -61,7 +61,7 @@ Hair. This should ensure that X509_V_ERR_CERT_NOT_YET_VALID or X509_V_ERR_CERT_HAS_EXPIRED are not encountered because of a broken RTC or the lack of a local RTC; we assume that tlsdate is recompiled yearly and that all certificates are otherwise considered valid. -.IP "-l | --leap" +.IP "\-l | \-\-leap" Normally, the passing of time or time yet to come ensures that SSL verify functions will fail to validate certificates. Commonly, X509_V_ERR_CERT_NOT_YET_VALID and X509_V_ERR_CERT_HAS_EXPIRED are painfully diff --git a/man/tlsdated.1 b/man/tlsdated.1 index 6aab05f..b9a8fbe 100644 --- a/man/tlsdated.1 +++ b/man/tlsdated.1 @@ -5,13 +5,13 @@ .SH NAME tlsdated \- secure parasitic rdate replacement daemon .SH SYNOPSIS -.B tlsdated [-wprlsvh] \ -[-t <n>] \ -[-d <n>] \ -[-T <n>] \ -[-D <n>] \ -[-c /path/to ] \ -[-a seconds ] \ +.B tlsdated [\-wprlsvh] \ +[\-t <n>] \ +[\-d <n>] \ +[\-T <n>] \ +[\-D <n>] \ +[\-c /path/to ] \ +[\-a seconds ] \ [\-\-] \ [tlsdate command] .SH DESCRIPTION @@ -20,31 +20,31 @@ is a daemon that runs tlsdate. It must be run as root or otherwise have the proper caps; it will not be able to set the system time without running as root or another privileged user. .SH OPTIONS -.IP "-w" +.IP "\-w" don't set hwclock -.IP "-p" +.IP "\-p" dry run (don't really set time) -.IP "-r" +.IP "\-r" use stdin instead of netlink for routes -.IP "-t [n]" +.IP "\-t [n]" try [n] times when a new route appears -.IP "-d [n]" +.IP "\-d [n]" delay n seconds between tries -.IP "-T [n]" +.IP "\-T [n]" give subprocess n chances to exit -.IP "-D [n]" +.IP "\-D [n]" delay n seconds between wait attempts -.IP "-c [/path/to/cache/directory/]" +.IP "\-c [/path/to/cache/directory/]" set the cache directory -.IP "-a [n]" +.IP "\-a [n]" run at most every n seconds in steady state -.IP "-l" +.IP "\-l" don't load disk timestamps -.IP "-s" +.IP "\-s" don't save disk timestamp -.IP "-v" +.IP "\-v" be verbose -.IP "-h" +.IP "\-h" print help message .IP "[tlsdate command]" arguments to be passed to tlsdate at launch time |