diff options
author | Daniel Borkmann <daniel@gnumaniacs.org> | 2012-07-13 18:56:41 +0200 |
---|---|---|
committer | Daniel Borkmann <daniel@gnumaniacs.org> | 2012-07-13 18:56:41 +0200 |
commit | c51af924984297837e85edb28e93d5512124c8f5 (patch) | |
tree | e8d530b591e96246250c3e760cc086b316f8b439 /man | |
parent | 76efed89c33e8ee62650041813191124a96754d1 (diff) | |
download | tlsdate-c51af924984297837e85edb28e93d5512124c8f5.tar.gz |
move manpages into man/, source files into src/
Signed-off-by: Daniel Borkmann <daniel@gnumaniacs.org>
Diffstat (limited to 'man')
-rw-r--r-- | man/tlsdate-helper.1 | 29 | ||||
-rw-r--r-- | man/tlsdate.1 | 46 |
2 files changed, 75 insertions, 0 deletions
diff --git a/man/tlsdate-helper.1 b/man/tlsdate-helper.1 new file mode 100644 index 0000000..4e09c63 --- /dev/null +++ b/man/tlsdate-helper.1 @@ -0,0 +1,29 @@ +.\" Process this file with +.\" groff -man -Tascii foo.1 +.\" +.TH TLSDATE 1 "JANUARY 2011" Linux "User Manuals" +.SH NAME +tlsdate-helper \- secure parasitic rdate replacement +.SH SYNOPSIS +.B tlsdate-helper host port protocol ca_racket verbose certdir setclock showtime +.SH DESCRIPTION +.B tlsdate-helper +is a tool for setting the system clock by hand or by communication +with the network. It does not set the Real Time Clock. It is designed to be as +secure as TLS (RFC 2246) but of course the security of TLS is often reduced to +whichever CA racket you believe is trustworthy. By default, tlsdate-helper +trusts your local CA root store - so any of these companies could assist in a +MITM attack against you and you'd be screwed. + +This tool is designed to be run by hand or as a system daemon. It must be +run as root or otherwise have the proper caps; it will not be able to set +the system time without running as root or another privileged user. +.SH BUGS +It's likely! Let us know by contacting jacob@appelbaum.net + +Note that +.B tlsdate(1) +is still in Alpha, and may not work as expected. +.SH AUTHOR +Jacob Appelbaum <jacob at appelbaum dot net> +.SH "SEE ALSO" diff --git a/man/tlsdate.1 b/man/tlsdate.1 new file mode 100644 index 0000000..311e469 --- /dev/null +++ b/man/tlsdate.1 @@ -0,0 +1,46 @@ +.\" Process this file with +.\" groff -man -Tascii foo.1 +.\" +.TH TLSDATE 1 "JANUARY 2011" Linux "User Manuals" +.SH NAME +tlsdate \- secure parasitic rdate replacement +.SH SYNOPSIS +.B tlsdate [-hnvVs] [-H [hostname]] [-p [port]] [-P [sslv23|sslv3|tlsv1]] +.SH DESCRIPTION +.B tlsdate +is a tool for setting the system clock by hand or by communication +with the network. It does not set the Real Time Clock. It is designed to be as +secure as TLS (RFC 2246) but of course the security of TLS is often reduced to +whichever CA racket you believe is trustworthy. By default, tlsdate trusts your +local CA root store - so any of these companies could assist in a MITM attack +against you and you'd be screwed. + +This tool is designed to be run by hand or as a system daemon. It must be +run as root or otherwise have the proper caps; it will not be able to set +the system time without running as root or another privileged user. +.SH OPTIONS +.IP "-h | --help" +Print the help message +.IP "-s | --skip-verification" +Skip certificate verification +.IP "-H | --host [hostname|ip]" +Set remote hostname (default: 'www.ptb.de') +.IP "-n | --dont-set-clock" +Do not set the system clock to the time of the remote server +.IP "-p | --port [port]" +Set remote port (default: '443') +.IP "-P | --protocol [sslv23|sslv3|tlsv1]" +Set protocol to use when communicating with server (default: 'tlsv1') +.IP "-v | --verbose" +Provide verbose output +.IP "-V | --showtime" +Show the time retrieved from the remote server +.SH BUGS +It's likely! Let us know by contacting jacob@appelbaum.net + +Note that +.B tlsdate(1) +is still in Alpha, and may not work as expected. +.SH AUTHOR +Jacob Appelbaum <jacob at appelbaum dot net> +.SH "SEE ALSO" |