On 10/11/14 21:24, Random Coder wrote:
I recently upgraded from an old version of Wget to 1.16 and noticed that
the default filename for a simple download is no longer based off the final
redirect URL, but rather on the initial URL, for instance, this command
wget http://goo.gl/beYoGO
Would previously create a file called "logo11w.png", but it's now creating
a file called "beYoGO". Is this an intentional change?
Yes, using the final could be dangerous (eg. suppose it redirected to
.bashrc).
This vulnerability got the identifier CVE-2010-2252
<http://people.ubuntu.com/%7Eubuntu-security/cve/CVE-2010-2252>
You can get the old behavior setting the --trust-server-names parameter.
