Hello
It's true that links doesn't visually noticed the user in such case. I see
the following solutions:
1 Disable https support
2 Notify the user about this behaviour in README.Debian
3 Somehow notify the user (I think I talked to Karel about this problem,
when I got the report
but he didn't
Processing commands for cont...@bugs.debian.org:
> found 510417 2.1pre26-4
Bug#510417: links2: silently accepts bad SSL certificates
Bug marked as found in version 2.1pre26-4.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system adminis
Adeodato Simó writes:
> * Neil Moore [Thu, 01 Jan 2009 11:57:35 -0500]:
>
> > Package: links2
> > Version: 2.2-1
> > Severity: grave
> > Tags: security
> > Justification: user security hole
>
> Hello, Neil. I’m sorry I’m not mailing you to help solve this bug, since
> I’m not the maintainer of li
* Neil Moore [Thu, 01 Jan 2009 11:57:35 -0500]:
> Package: links2
> Version: 2.2-1
> Severity: grave
> Tags: security
> Justification: user security hole
Hello, Neil. I’m sorry I’m not mailing you to help solve this bug, since
I’m not the maintainer of links2.
I do release management in Debian,
Package: links2
Version: 2.2-1
Severity: grave
Tags: security
Justification: user security hole
Links2 does not validate certificates it receives; as a result, there is
no warning that one is visiting a page with an expired certificate, a
certificate not signed by a trusted authority, or a certif
5 matches
Mail list logo
