lynx-dev
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: LYNX-DEV Digital Certificates?


From: Root
Subject: Re: LYNX-DEV Digital Certificates?
Date: Thu, 3 Apr 1997 00:17:45 -0500

On Fri, 21 Mar 1997, Bill Curr wrote:

> this is a real grope, but I was amazed at the thought of cookie support
> with LYNX, so here goes... can Lynx support digital certificates? Any help
> would be appreciated!

My advanced server, eassl, and the everything server, edssl will allow
USER certificates (and everything else with SSL).  You simply specify a
usercert file in the config file, and it will present the cert if asked.

Generating a cert is more complicated since it needs an spki or spkac
program to generate the structure Netscape uses, but I have a cert direct
from verisign I can use with both lynx and netscape.

The <keygen .. > tag is recognized by lynx, but there is still stuff to do
(basically paste the output of spkac into a textarea for the keygen tag).

Lynx with internal SSL has limits - it doesn't fully verify certs, so
doesn't authenticate 100%.  e[ad]ssl does.

ITAR (now EAR) would require someone applying for an export license for
lynx-ssl, or the proxy.  They would probably say no since it could easily
be fixed to full crypto, so then you would have to go through court...
If anyone is a lawyer and wants to do this pro-bono, it might get done.
Otherwise, it is too expensive to certify a "free" product.

address@hidden
finger address@hidden for PGP key

;
; To UNSUBSCRIBE:  Send a mail message to address@hidden
;                  with "unsubscribe lynx-dev" (without the
;                  quotation marks) on a line by itself.
;

reply via email to

[Prev in Thread] Current Thread [Next in Thread]