On Tue, 14 Dec 2004, Steve Glymph wrote:
(I know very little about wget, I'm just bringing my observations.)
I was expecting to see the Basic authorization used initially (as seen below) but that a 401 error would be returned instead of a 403.
Possibly that happens because you provide authentication that isn't accepted.
I find it rather amusing that wget tries to "auto-detect" Digest while providing Basic, since that means that first it'll send the password in plain text only to let the server ask for a method in which the password doesn't have to get sent in plain text... So, basicly there's no way to avoid showing the password for evesdroppers even if Digest would work!
I have tried to run curl to the same node and it does perform the negotiation correctly.
Maybe it is about time I bring up my old suggestion of moving wget over to use libcurl for transfers... :-)
--
-=- Daniel Stenberg -=- http://daniel.haxx.se -=-
ech`echo xiun|tr nu oc|sed 'sx\([sx]\)\([xoi]\)xo un\2\1 is xg'`ol
