Identifying secure web servers through the Web of Trust

The Monkeysphere Mozilla/Firefox/Iceweasel add-on can be used to authenticate secure web servers that have published their keys to the Web of Trust.

How to install

The Monkeysphere add-on requires a working Monkeysphere validation agent. Please see the documentation on installing and configuring the Monkeysphere validation agent.

If you are running Debian or a Debian-derived system you can run the following to install the add-on:

# aptitude install xul-ext-monkeysphere

You can also install it manually from the Monkeysphere archive.

Please see the download page for more info and for instructions for other distributions.

How to use

Once the add-on has been installed, you will need to restart your browser in order for it to be registered.

If the validation-agent has been configured to start automatically when logging into your X11 session, the Monkeysphere browser add-on will pick up the information needed to communicate with the agent automatically.

If you now visit a site that is not valid through normal TLS X.509 validation, you will notice a new Monkeysphere icon in your status bar. This icon indicates that the add-on had queried, or is querying, the validation agent to determine if the site can be validated via the OpenPGP Web of Trust.

If the validation agent was able to validate the site, the status bar icon will be a monkey head, which indicates that the site has been "Monkeysphere validated". At this point the add-on should by-pass any notification that "This Connection is Untrusted" and grant you access to the site.

If the site was not able to be validated by the validation agent, the icon will be a monkey head crossed out with a red circle and you will see the normal "Connection is Untrusted" warnings.

If the status icon is a spinning monkey head, that means the validation agent is being queried, and a response is coming shortly.

Don't forget to keep your keyring up-to-date!