The OpenPGP side of this is similar to the SSH protocol, with public
keys for `https://server.example.net` etc. stored in your keyring.
-There's a neat little server `msva-perl` that checks your trust in a
+There's a neat little server [msva-perl][] that checks your trust in a
particular (*context*, *peer*, *PKC type*, *peer type*, *PKC data*)
tuple (e.g. (`https`, `server.example.net`, `x509pem`, `server`,
`cert.pem`)), which you can do by hand (via `msva-query-agent`).
-There's also a XUL extension (works in Firefox and related tools) that
-uses the `msva` server to validate HTTPS connections automatically.
-Nice.
+There's also a [XUL extension][xul] (works in Firefox and related
+tools) that uses the `msva` server to validate HTTPS connections
+automatically. Nice.
If you don't want to use the the validation agent and plugin, you can
verify keys by hand using `openpgp2pem` (this patch has not yet been
[Monkeysphere]: http://web.monkeysphere.info/
[docs]: http://web.monkeysphere.info/doc/
[fifo]: https://bugzilla.mindrot.org/show_bug.cgi?id=1869
+[msva-perl]: http://web.monkeysphere.info/validation-agent/
+[xul]: https://archive.monkeysphere.info/xul-ext/monkeysphere.xpi