Package: wget
Version: 1.20.1-1.1
Severity: normal
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
* What exactly did you do (or not do) that was effective (or
ineffective)?
wget https://matteosistisette.com/generatore-strofe-bolero-baglioni/
* What was the outcome of this action?
ERROR: certificate is not trusted
ERROR: certificate is expired
(I'm writing by memory, so the wording might not be 100% exact)
* What outcome did you expect instead?
Should have downloaded the page with no error. The certificate is
trusted and not expired.
curl downloads the exact same url without error, and so does my browser.
Note that the server serving the url is the very same machine I'm using
wget from. I'm not sure whether the issue happens at the client or the
server level, but it's the same machine.
I suspect this is due to a CA certificate having recently expired and
being wrongly used due to a misconfiguration in the distribution.
Given that I did not install or choose the root certificates but used
the package manager, this is a bug in the distribution or the
distributed packages. Perhaps not in wget, please reassign to whatever
the culprit is.
*** End of the template - remove these template lines ***
-- System Information:
Debian Release: 10.2
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-6-cloud-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages wget depends on:
ii libc6 2.28-10
ii libgnutls30 3.6.7-4
ii libidn2-0 2.0.5-1
ii libnettle6 3.4.1-1
ii libpcre2-8-0 10.32-5
ii libpsl5 0.20.2-2
ii libuuid1 2.33.1-0.1
ii zlib1g 1:1.2.11.dfsg-1
Versions of packages wget recommends:
ii ca-certificates 20190110
wget suggests no packages.
-- no debconf information
