$ [fetch|wget] http://www.ca.cypherpunks.ru/cert.pem
$ [fetch|wget] http://www.ca.cypherpunks.ru/cert.pem.asc
$ gpg --auto-key-locate dane --locate-keys stargrave at stargrave dot org
-$ gpg --auto-key-locate wkd --locate-keys stargrave at gnupg dot net
+$ gpg --auto-key-locate wkd --locate-keys stargrave at gnupg dot net
$ gpg --verify cert.pem.asc
$ SSL_CERT_FILE=`pwd`/cert.pem GIT_SSL_CAINFO=`pwd`/cert.pem redo all
@end example
@item
Run @command{tofuproxy} itself. By default it will bind to
-@code{[::1]:8080}, use @code{[::1]:53} DNS server for DANE requests
+@code{[::1]:8080} and use @code{[::1]:53} DNS server for DANE requests
(set to an empty string to disable DANE lookups):
@example
# cat cert.pem >> /etc/ssl/cert.pem
@end example
-@item Point you HTTP/HTTPS clients to @code{http://localhost:8080}.
-
-@item
-If you want to use TLS client certificates, then place them to
-@file{-ccerts} directory.
+@item Point you HTTP/HTTPS clients to @code{http://localhost:8080} proxy.
@item Watch logs:
@image{logs,,,Example logs,.webp}
@end itemize
-
-@include spies.texi
-@include certs.texi
-@include warcs.texi
-@include gemini.texi