Package: wget
Version: 1.14-5
Severity: normal
Hello,
I tried to downlaod a few files with wget.
wget fails to connect to server in spite of both openssl and gnutls
secure client connecting fine.
$ gnutls-cli -d 1 --x509cafile /etc/ssl/certs/ca-certificates.crt -p 443
ftp7.de.netbsd.org
Processed 159 CA certificate(s).
Resolving 'ftp7.de.netbsd.org'...
Connecting to '139.18.25.35:443'...
*** Non fatal error: A TLS warning alert has been received.
*** Received alert [112]: The server name sent was not recognized
- Certificate type: X.509
- Got a certificate list of 4 certificates.
- Certificate[0] info:
- subject `C=DE,ST=Sachsen,L=Leipzig,O=Universitaet
Leipzig,OU=Informatik,CN=6bone.informatik.uni-leipzig.de', issuer
`C=DE,O=Universitaet Leipzig,OU=URZ,CN=UNIVERSITAET LEIPZIG
CA,EMAIL=p...@uni-leipzig.de', RSA key 4096 bits, signed using RSA-SHA1,
activated `2010-09-22 06:40:11 UTC', expires `2015-09-21 06:40:11 UTC', SHA-1
fingerprint `9d7c8daf76863f7cee3fc5135feb0633d6c2beff'
Public Key Id:
f36a4553a6b1d2530e2cf7758baa89370ef92d15
Public key's random art:
+--[ RSA 4096]----+
| . |
| . = + . .|
| + @ ....|
| . BEo. . |
| So oo |
| .o.o |
| o..= |
| .+B. |
| .+oo. |
+-----------------+
- Certificate[1] info:
- subject `C=DE,O=Deutsche Telekom AG,OU=T-TeleSec Trust Center,CN=Deutsche
Telekom Root CA 2', issuer `C=DE,O=Deutsche Telekom AG,OU=T-TeleSec Trust
Center,CN=Deutsche Telekom Root CA 2', RSA key 2048 bits, signed using
RSA-SHA1, activated `1999-07-09 12:11:00 UTC', expires `2019-07-09 23:59:00
UTC', SHA-1 fingerprint `85a408c09c193e5d51587dcdd61330fd8cde37bf'
- Certificate[2] info:
- subject `C=DE,O=DFN-Verein,OU=DFN-PKI,CN=DFN-Verein PCA Global - G01',
issuer `C=DE,O=Deutsche Telekom AG,OU=T-TeleSec Trust Center,CN=Deutsche
Telekom Root CA 2', RSA key 2048 bits, signed using RSA-SHA1, activated
`2006-12-19 10:29:00 UTC', expires `2019-06-30 23:59:00 UTC', SHA-1 fingerprint
`f0288fdac63af79a319ae972f395090ea3efe945'
- Certificate[3] info:
- subject `C=DE,O=Universitaet Leipzig,OU=URZ,CN=UNIVERSITAET LEIPZIG
CA,EMAIL=p...@uni-leipzig.de', issuer
`C=DE,O=DFN-Verein,OU=DFN-PKI,CN=DFN-Verein PCA Global - G01', RSA key 2048
bits, signed using RSA-SHA1, activated `2007-01-31 09:23:56 UTC', expires
`2019-01-30 00:00:00 UTC', SHA-1 fingerprint
`1703c5c05c863c4d5898fbfc4da296d8b31ec93e'
- Status: The certificate is trusted.
- Description: (TLS1.0-PKIX)-(RSA)-(AES-128-CBC)-(SHA1)
- Session ID:
DC:2F:F0:08:53:F1:B8:D1:0E:8F:92:38:90:4F:13:92:96:68:1D:57:84:F8:FC:5D:62:26:77:AC:86:02:6D:45
- Version: TLS1.0
- Key Exchange: RSA
- Cipher: AES-128-CBC
- MAC: SHA1
- Compression: NULL
- Handshake was completed
- Simple Client Mode:
^C
$ wget --ca-certificate=/etc/ssl/certs/ca-certificates.crt -np -r
https://ftp7.de.netbsd.org/pub/ftp.netbsd.org/pub/NetBSD/NetBSD-6.1.2/source/sets/
--2013-12-04 01:47:00--
https://ftp7.de.netbsd.org/pub/ftp.netbsd.org/pub/NetBSD/NetBSD-6.1.2/source/sets/
Resolving ftp7.de.netbsd.org (ftp7.de.netbsd.org)... 139.18.25.35,
2001:638:902:1::11
Connecting to ftp7.de.netbsd.org (ftp7.de.netbsd.org)|139.18.25.35|:443...
connected.
GnuTLS: A TLS warning alert has been received.
Unable to establish SSL connection.
-- System Information:
Debian Release: 7.2
APT prefers stable
APT policy: (990, 'stable'), (171, 'unstable'), (151, 'experimental'), (121,
'precise-updates'), (121, 'precise-security'), (121, 'precise'), (101,
'stable'), (101, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.11-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages wget depends on:
ii libc6 2.17-93
ii libgnutls28 3.2.4-4
ii libidn11 1.25-2
ii libuuid1 2.20.1-5.3
ii zlib1g 1:1.2.7.dfsg-13
wget recommends no packages.
wget suggests no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
