[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: LYNX-DEV Digital Certificates?
From: |
Root |
Subject: |
Re: LYNX-DEV Digital Certificates? |
Date: |
Thu, 3 Apr 1997 00:17:45 -0500 |
On Fri, 21 Mar 1997, Bill Curr wrote:
> this is a real grope, but I was amazed at the thought of cookie support
> with LYNX, so here goes... can Lynx support digital certificates? Any help
> would be appreciated!
My advanced server, eassl, and the everything server, edssl will allow
USER certificates (and everything else with SSL). You simply specify a
usercert file in the config file, and it will present the cert if asked.
Generating a cert is more complicated since it needs an spki or spkac
program to generate the structure Netscape uses, but I have a cert direct
from verisign I can use with both lynx and netscape.
The <keygen .. > tag is recognized by lynx, but there is still stuff to do
(basically paste the output of spkac into a textarea for the keygen tag).
Lynx with internal SSL has limits - it doesn't fully verify certs, so
doesn't authenticate 100%. e[ad]ssl does.
ITAR (now EAR) would require someone applying for an export license for
lynx-ssl, or the proxy. They would probably say no since it could easily
be fixed to full crypto, so then you would have to go through court...
If anyone is a lawyer and wants to do this pro-bono, it might get done.
Otherwise, it is too expensive to certify a "free" product.
address@hidden
finger address@hidden for PGP key
;
; To UNSUBSCRIBE: Send a mail message to address@hidden
; with "unsubscribe lynx-dev" (without the
; quotation marks) on a line by itself.
;
- Re: LYNX-DEV Digital Certificates?,
Root <=