[pkg-lynx-maint] Bug#745835: lynx-cur: certificate revocation is not checked
Vincent Lefevre
vincent at vinc17.net
Mon May 4 00:03:17 UTC 2015
I forgot...
On 2015-04-27 17:38:53 +0200, Axel Beckert wrote:
> NOTES
>
> While HTTPS is supported, Lynx currently can't check certification
> revocation lists and doesn't support the Online Certificate Status
> Protocol (OCSP), hence it can't warn about websites using revoked
> SSL certificates.
>
> Or do you have a better suggestion?
Well, now with the new GnuTLS, this is no longer true:
$ lynx https://www.vinc17.net:4434/
SSL error:The certificate is NOT trusted. The certificate chain is revoked. -Continue? (y)
So, perhaps say in the notes that OCSP checking is done via GnuTLS.
--
Vincent Lefèvre <vincent at vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
More information about the pkg-lynx-maint
mailing list