Hello
It's true that links doesn't visually noticed the user in such case. I see
the following solutions:
1 Disable https support
2 Notify the user about this behaviour in README.Debian
3 Somehow notify the user (I think I talked to Karel about this problem,
when I got the report
but he
* Neil Moore [Thu, 01 Jan 2009 11:57:35 -0500]:
Package: links2
Version: 2.2-1
Severity: grave
Tags: security
Justification: user security hole
Hello, Neil. I’m sorry I’m not mailing you to help solve this bug, since
I’m not the maintainer of links2.
I do release management in Debian, and
Adeodato Simó writes:
* Neil Moore [Thu, 01 Jan 2009 11:57:35 -0500]:
Package: links2
Version: 2.2-1
Severity: grave
Tags: security
Justification: user security hole
Hello, Neil. I’m sorry I’m not mailing you to help solve this bug, since
I’m not the maintainer of links2.
I do
Package: links2
Version: 2.2-1
Severity: grave
Tags: security
Justification: user security hole
Links2 does not validate certificates it receives; as a result, there is
no warning that one is visiting a page with an expired certificate, a
certificate not signed by a trusted authority, or a
4 matches
Mail list logo