1
SSL support for Lynx 2.8.5pre.1
2
-- adapted from http://www.mentovai.com/lynx/
4
Lynx, in its unmodified form, will not allow you to make secure socket layer
5
(SSL) connections. SSL is used for the secure transfer of information over the
6
Internet. Many sites are now requiring SSL to ensure security for themselves
7
and their users. With a version of Lynx modified to support SSL, Lynx users
8
can now visit these sites with ease as well.
10
The SSL configure option (--with-ssl) for Lynx provides the ability to make use
11
of SSL over HTTP for secure access to web sites (HTTPS) and over NNTP for
12
secure access to news servers (SNEWS). SSL is handled transparently, allowing
13
users to continue accessing web sites and news services from within Lynx
14
through the same interface for both secure and standard transfers.
16
This is based on, and requires, the OpenSSL library. OpenSSL's distribution
17
and use may be restricted by licenses and laws. For information on obtaining
18
OpenSSL, as well as information on its distribution, see
20
http://www.openssl.org/
22
The main distribution site is at
24
ftp://ftp.openssl.org/source/
26
Lynx also has experimental support for GnuTLS (configure option --with-gnutls).
27
For information on GnuTLS, see
29
http://www.gnu.org/software/gnutls/
31
To test your version of Lynx for SSL support, try it out with an SSL site.
32
Below are secure (https) pages which will load if your browser contains SSL
33
support and you accept their certificates; they give you some information about
36
https://www.gnutls.org:5555/
37
https://www2.ggn.net/cgi-bin/ssl
39
Lynx will complain about the certificate, since the certificate presented is
40
untrusted. You may accept this certificate to test your configuration, since
41
it is a test, but it is a bad idea to blindly accept certificates from unknown
42
websites if you are transmitting form data or files.
44
You should review the document README.sslcerts for a detailed discussion of
45
correct certificate handling possibilities and procedures in lynx.
47
Users are reminded to check the laws and regulations about encryption software
48
in their own countries.
50
Here is the URL for US notification rules:
52
http://www.bxa.doc.gov/Encryption/PubAvailEncSourceCodeNofify.html
54
Note that that isn't a typo; it really is "Nofify". The site contains
55
links to the full EAR regulations.
57
Lynx is GPL'd, for our own use it falls under the regulations in EAR section
60
(1) Encryption source code controlled under 5D002, which would be
61
considered publicly available under section 734.3(b)(3) and
62
which is not subject an express agreement for the payment a
63
licensing fee or royalty for commercial production or sale of
64
any product developed with the source code, is released from
65
EI controls and may be exported or reexported without review
66
under License Exception TSU, provided you have submitted
67
written notification to BXA of the Internet location (e.g.,
68
URL or Internet address) or a copy of source code by the time