Add support for "constraints": when configured, ntpd(8) will query the

time from HTTPS servers, by parsing the Date: header, and use the
median constraint time as a boundary to verify NTP responses.  This
adds some level of authentication and protection against MITM attacks
while preserving the accuracy of the NTP protocol; without relying on
authentication options for NTP that are basically unavailable at
present.  This is an initial implementation and the semantics will be
improved once it is in the tree.

Discussed with deraadt@ and henning@
OK henning@

1 files changed, 4 insertions, 1 deletions

diff --git a/etc/examples/ntpd.conf b/etc/examples/ntpd.conf
index 7fcbbed08cd..2446fc755fb 100644
--- a/etc/examples/ntpd.conf
+++ b/etc/examples/ntpd.conf
@@ -1,4 +1,4 @@
-# $OpenBSD: ntpd.conf,v 1.1 2014/07/13 13:53:36 rpe Exp $
+# $OpenBSD: ntpd.conf,v 1.2 2015/02/10 06:40:08 reyk Exp $
 # sample ntpd configuration file, see ntpd.conf(5)
 
 # Addresses to listen on (ntpd does not listen by default)
@@ -16,3 +16,6 @@ servers pool.ntp.org
 
 # use all detected timedelta sensors
 #sensor *
+
+# get the time constraint from a well-known HTTPS site
+#constraints from "https://www.google.com/search?q=openntpd"