Network Time Synchronization
It is recommended to have a host clock with accuracy of up to ± 30 minutes. Clocks that are days, weeks, months or even years slow or fast can lead to many issues such as connectivity problems with Tor, inability to download operating system upgrades. 
Follow the platform-specific recommendations below to avoid Tor connectivity problems and to limit possible adverse security impacts.
If the host clock is more than 1 hour in the past or more than 3 hours in the future, Tor cannot connect. In this case, manually fix the host clock by right-clicking on it, and also check for an empty battery.
- If using Kicksecure ™ as a host operating system: Reboot. (Easiest.)
- If using a VM: Then, power off and power on Kicksecure ™ and Tor should be able to reconnect.
Kicksecure in VMs or as a host operating system: It is strongly discouraged to use the pause / suspend / save / hibernate features.
Kicksecure ™ for Qubes VMs: It is strongly discouraged to use the pause feature of Qube Manager, but it is is safe to use the suspend or hibernate feature of dom0.
If you are interested in using the pause / suspend / save / hibernate features, please click the expand button for further instructions.
Kicksecure ™ as a host operating system or VM:
- It is strongly discouraged to pause / suspend / save / hibernate Kicksecure ™. If this advice is ignored, restart sdwdate after resume. 
Kicksecure ™ for Qubes:
Start Menu →
Time Synchronization Monitor (sdwdate-gui) →
Or in a terminal. 
Manually Set Clock Time and Date
Usually not required.
In case sdwdate fails to properly randomize the system clock, it is possible to manually set a random value.
The first step should be completed on the host to ensure the host clock is set to the correct time.
Block Networking until sdwdate Finishes
sdwdate is a Tor-friendly replacement for rdate and ntpdate that sets the system's clock by communicating via end-to-end encrypted TCP with Tor onion webservers. Since timekeeping is crucial for security, blocking network access until sdwdate succeeds is sensible. 
Table: Network Time Synchonization Summary
Deactivate Automatic TimeSync
To deactivate sdwdate, run.
- Due to invalid (not yet or no longer valid) TLS certificates.
Similarly, if users suspend or save the Kicksecure ™ state, the clock will again lag behind the correct value. This can be manually fixed by running:
Time Synchronization Monitor (sdwdate-gui)→
Qubes does not dispatch the
/etc/qubes/suspend-pre.dhooks upon pause / resume using Qube Manager.
Simplified in next upgrade.
Mon Apr 22 04:30:44 UTC 2019
A non-zero exit codes signifies an error, while
0means it succeeded.
man clock-random-manual-guiman clock-random-manual-cli
echo "Sat Oct 26 07:18:25 UTC 2019" | /usr/bin/clock-random-manual-cli