Package: wget Version: 1.10.2-3 Severity: normal
Wget uses an obsolete way of verifying SSL certificates by matching the Common Name field against the domain name. It should use X.509 v3 Subject Alternative Names instead, or at the very least be aware of the fact that some certificates have several CN fields. Because of this problem, Wget does not recognize multi-domain certificates such as ones sold by Comodo at positivessl.com. For an example, go to https://www.majorfiresupply.com/ and take a look at the certificate. -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.18-ovz028stab035.1 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages wget depends on: ii libc6 2.6.1-1+b1 GNU C Library: Shared libraries ii libssl0.9.8 0.9.8e-6 SSL shared libraries wget recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
