slackware-current/patches/source/ntp/ntpdate.8
Patrick J Volkerding 3f544e903a Fri Jun 2 20:56:35 UTC 2023
patches/packages/cups-2.4.3-x86_64-1_slack15.0.txz:  Upgraded.
  Fixed a heap buffer overflow in _cups_strlcpy(), when the configuration file
  cupsd.conf sets the value of loglevel to DEBUG, that could allow a remote
  attacker to launch a denial of service (DoS) attack, or possibly execute
  arbirary code.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-32324
  (* Security fix *)
patches/packages/ntp-4.2.8p16-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-26551
    https://www.cve.org/CVERecord?id=CVE-2023-26552
    https://www.cve.org/CVERecord?id=CVE-2023-26553
    https://www.cve.org/CVERecord?id=CVE-2023-26554
    https://www.cve.org/CVERecord?id=CVE-2023-26555
  (* Security fix *)
2023-06-03 13:30:32 +02:00

152 lines
5.6 KiB
Groff

.TH ntpdate 8
.SH NAME
ntpdate \- set the date and time via NTP
.SH SYNOPSIS
.B ntpdate
.RB [\| \-bBdoqsuv \|]
.RB [\| \-a
.IR key \|]
.RB [\| \-e
.IR authdelay \|]
.RB [\| \-k
.IR keyfile \|]
.RB [\| \-o
.IR version \|]
.RB [\| \-p
.IR samples \|]
.RB [\| \-t
.IR timeout \|]
.IR server
.RB [\| ... \|]
.SH DESCRIPTION
.B ntpdate
sets the local date and time by polling the Network Time
Protocol (NTP) server(s) given as the
.I server
arguments to determine
the correct time. It must be run as root on the local host (unless the option \fB\-q\fR is used). A number
of samples are obtained from each of the servers specified and a
subset of the NTP clock filter and selection algorithms are applied to
select the best of these. Note that the accuracy and reliability of
ntpdate depends on the number of servers, the number of polls each
time it is run and the interval between runs.
ntpdate can be run manually as necessary to set the host clock, or it
can be run from the host startup script to set the clock at boot time.
This is useful in some cases to set the clock initially before
starting the NTP daemon ntpd. It is also possible to run ntpdate from
a cron script. However, it is important to note that ntpdate with
contrived cron scripts is no substitute for the NTP daemon, which uses
sophisticated algorithms to maximize accuracy and reliability while
minimizing resource use. Finally, since ntpdate does not discipline
the host clock frequency as does ntpd, the accuracy using ntpdate is
limited.
Time adjustments are made by ntpdate in one of two ways. If ntpdate
determines the clock is in error more than 0.5 second it will simply
step the time by calling the system settimeofday() routine. If the
error is less than 0.5 seconds, it will slew the time by calling the
system adjtime() routine. The latter technique is less disruptive and
more accurate when the error is small, and works quite well when
ntpdate is run by cron every hour or two.
ntpdate will decline to set the date if an NTP server daemon (e.g.,
ntpd) is running on the same host. When running ntpdate on a regular
basis from cron as an alternative to running a daemon, doing so once
every hour or two will result in precise enough timekeeping to avoid
stepping the clock.
.SH OPTIONS
.TP
.BI \-a \ key
Enable the authentication function and specify the key
identifier to be used for authentication as the argument
keyntpdate. The keys and key identifiers must match in both the
client and server key files. The default is to disable the
authentication function.
.TP
.B \-B
Force the time to always be slewed using the adjtime() system
call, even if the measured offset is greater than +-128 ms. The
default is to step the time using settimeofday() if the offset
is greater than +-128 ms. Note that, if the offset is much
greater than +-128 ms in this case, that it can take a long
time (hours) to slew the clock to the correct value. During
this time, the host should not be used to synchronize clients.
.TP
.B \-b
Force the time to be stepped using the settimeofday() system
call, rather than slewed (default) using the adjtime() system
call. This option should be used when called from a startup
file at boot time.
.TP
.B \-d
Enable the debugging mode, in which ntpdate will go through all
the steps, but not adjust the local clock. Information useful
for general debugging will also be printed.
.TP
.BI \-e \ authdelay
Specify the processing delay to perform an authentication
function as the value authdelay, in seconds and fraction (see
ntpd for details). This number is usually small enough to be
negligible for most purposes, though specifying a value may
improve timekeeping on very slow CPU's.
.TP
.BI \-k \ keyfile
Specify the path for the authentication key file as the string
keyfile. The default is /etc/ntp.keys. This file should be in
the format described in ntpd.
.TP
.BI \-o \ version
Specify the NTP version for outgoing packets as the integer
version, which can be 1 or 2. The default is 3. This allows
ntpdate to be used with older NTP versions.
.TP
.BI \-p \ samples
Specify the number of samples to be acquired from each server
as the integer samples, with values from 1 to 8 inclusive. The
default is 4.
.TP
.B \-q
Query only - don't set the clock.
.TP
.B \-s
Divert logging output from the standard output (default) to the
system syslog facility. This is designed primarily for
convenience of cron scripts.
.TP
.BI \-t \ timeout
Specify the maximum time waiting for a server response as the
value timeout, in seconds and fraction. The value is is rounded
to a multiple of 0.2 seconds. The default is 1 second, a value
suitable for polling across a LAN.
.TP
.B \-u
Direct ntpdate to use an unprivileged port for outgoing packets.
This is most useful when behind a firewall that blocks incoming
traffic to privileged ports, and you want to synchronise with
hosts beyond the firewall. Note that the \-d option always uses
unprivileged ports.
.TP
.B \-v
Be verbose. This option will cause ntpdate's version
identification string to be logged.
.SH DIAGNOSTICS
\fBntpdate\fP's exit status is zero if it found a server
and could update the clock, and nonzero otherwise.
.SH FILES
.TP
.I /etc/ntp.keys
\- encryption keys used by ntpdate.
.SH BUGS
The slew adjustment is actually 50% larger than the measured offset,
since this (it is argued) will tend to keep a badly drifting clock
more accurate. This is probably not a good idea and may cause a
troubling hunt for some values of the kernel variables tick and
tickadj.
.SH AUTHOR
David L. Mills (mills@udel.edu)
.br
This manpage converted from html to roff by
Fabrizio Polacco <fpolacco@debian.org>
.SH "SEE ALSO"
\fBntpdate\-debian\fR(8)