[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: wget & certificates

Camaleón <noelamac@gmail.com> writes:

> On Thu, 19 May 2011 07:27:34 +0200, Kamil Jońca wrote:
>> I have strange problem with wget:
> (...)
>> Validation SSL SGC CA':
>>   Unable to locally verify the issuer's authority.
>> To connect to www.centrum24.pl insecurely, use `--no-check-certificate'.
> Wget cannot validate the CA and thus drops the connection. 
> You can:
> 1/ Discard "https://"; and use plain "http" (unencrypted channel) as 
> suggested (don't do this unless you trust the site you are connecting
> to)
I want to use encrypted channel.
> 2/ Install "ca-certificates" package and point wget so it can find it 
> (wget --ca-certificate=/usr/share/ca-certificates/cacert.org/
> cacert.org.crt ...)

"ca-certificates" were installed earlier. MOreover using
--ca-certificate option (ie. 

--8<---------------cut here---------------start------------->8---
wget -v -x  --ca-certificate=/usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.crt 'https://www.centrum24.pl/bzwbkonline/eSmart.html?typ=90&lang=pl'
--8<---------------cut here---------------end--------------->8---
doesn't change wget's behavior; still wants to open
"/usr/lib/ssl/certs/415660c1.?" ) 

Moreover i noticed that fetchmail on one of my accounts shows the same
- cannot validate CA :(


kondensator - kondensatorych - kondensatoremu
   (odmiana słowa "kondensator" według MS Word 6.0)

Reply to: