Micah Cowan
Thu, 03 Apr 2008 10:17:33 -0700
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Amit Patel wrote: > Hi Hrvoje Niksic / Micah Cowan > > I am having strange problem with wget 1.11 version. While accessing a > webserver which is running on Verisign issued Trial certificates, wget > 1.11 gives following error even though that certificate is valid. > > [EMAIL PROTECTED]:/root $ wget --ca-certificate=/etc/ca-bundle.crt > https://rw01246.einfochips.com* <snip> > However , if i try same with wget version 1.10.2 which is on another > redhat machine, it is working perfect. I am not able to understand where > the problem is. If you can spare some time and help help me to solve > the issue , that would be great. RedHat has been known to modify Wget fairly heavily. Recent versions of RedHat's "Wget 1.10.2" differ very substantially from ours. It would be more useful to see how a wget-1.10.2 that was built straight from our source packages would compare. Is /etc/ca-bundle.crt exactly the same on both systems? And: are you sure the "working" version doesn't have "check_certificate = off" in either the /etc/wgetrc or ~/.wgetrc? ...If you can verify all of that, then I'm not sure how to go forward: we'd need access to try that server, I guess (which doesn't resolve, for me). Also: Hrvoje and I are both subscribed to this list; no need to Cc us. It's recommended, when posting to lists, that you choose a subject header that describes the problem you're having, rather than just describing that you have a problem. "Valid SSL certificate not accepted" would have been a reasonable subject. - -- Micah J. Cowan Programmer, musician, typesetting enthusiast, gamer, and GNU Wget Project Maintainer. http://micah.cowan.name/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFH9RET7M8hyUobTrERArgYAJ9MwEOct/mhd0ic9/HzMTvuLXV74ACeJpvK Ub3NwgJB5fLe4Z11agbCOWk= =J4Pg -----END PGP SIGNATURE-----