Hey, Just to add to Otto's point, OpenBSD NTP validates the time received against the time within the headers of a HTTPS request (I believe the default is google's homepage) and if they are close enough accepts the time as valid.
This helps prevent against time based attacks. The issue with getting time entirely from HTTPS is accuracy, and this can cause issues for TOTP. I have heard of people who setup their own local timeservers using a SBC and an antenna for GPS. Take care, -- Polarian Jabber/XMPP: [email protected]
