elinks and links2 don't verify ssl certificates
at all on Debian 8
https://lists.debian.org/debian-user/2016/03/msg00931.html
Slightly paraphrased from the cypherpunks mailing list:
https://cpunks.org/pipermail/cypherpunks/2016-March/012574.html
[OT] Would someone please check if links2 and elinks verify
certificates on clean install of Debian 8?
----
...elinks and links2 don't verify ssl certificates at all
on Debian 8 (this got confirmation in the thread)
To verify, try to open site which doesn't properly chain to trusted
root, say https://cacert.org (unless you trust their root ) and check
if it opens or there is error/warning.
For me, on updated system, both don't verify certificates.
Looks like at least ubuntu and fedora killed the elinks bug long ago.
Searching the web for "$browser self signed certificate" shows some
relevant results.
----
Sarcastic comment asks "when debian will learn about this".
Posted by memset-dev-random |
Permanent link