Here is another take on bug#16791. This updates an existing patch to work with `patch -p1` and then applies patches that enable SSL / TLS verification and disable broken SSL protocols and ciphers.
Thoughts? Leo Famulari (2): gnu: w3m: Update patch to use '-p1'. gnu: w3m: Enable SSL, disable broken protocols and ciphers. gnu-system.am | 3 +++ .../patches/w3m-disable-sslv2-and-sslv3.patch | 26 +++++++++++++++++++++ .../patches/w3m-disable-weak-ciphers.patch | 27 ++++++++++++++++++++++ gnu/packages/patches/w3m-fix-compile.patch | 24 ++++++++++++++----- .../patches/w3m-force-ssl_verify_server-on.patch | 27 ++++++++++++++++++++++ gnu/packages/w3m.scm | 7 ++++-- 6 files changed, 106 insertions(+), 8 deletions(-) create mode 100644 gnu/packages/patches/w3m-disable-sslv2-and-sslv3.patch create mode 100644 gnu/packages/patches/w3m-disable-weak-ciphers.patch create mode 100644 gnu/packages/patches/w3m-force-ssl_verify_server-on.patch -- 2.6.4
