1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
One of the java packages, jdictrayapi, is only available over ssl. Here |
5 |
is the output I get if I try downloading it with wget: |
6 |
|
7 |
betelgeuse@pena ~/java $ wget |
8 |
https://jdic.dev.java.net/files/documents/880/16466/jdic-0.9.1-src.zip |
9 |
- --23:37:11-- |
10 |
https://jdic.dev.java.net/files/documents/880/16466/jdic-0.9.1-src.zip |
11 |
=> `jdic-0.9.1-src.zip' |
12 |
Resolving jdic.dev.java.net... 64.125.133.206 |
13 |
Connecting to jdic.dev.java.net|64.125.133.206|:443... connected. |
14 |
ERROR: Certificate verification error for jdic.dev.java.net: unable to |
15 |
get local issuer certificate |
16 |
To connect to jdic.dev.java.net insecurely, use `--no-check-certificate'. |
17 |
Unable to establish SSL connection. |
18 |
|
19 |
It is usually not a problem for users because the file gets mirrored but |
20 |
when doing version bumps I come across this again. As a solution I added |
21 |
- --no-check-certificate to my FETCHCOMMAND so this will not bother me |
22 |
again. |
23 |
So what about adding this as the default for everyone? The verification |
24 |
of the download is done on our side so we don't really need the ssl |
25 |
certificate checking and it would probably be (very?) little faster |
26 |
without checking. It could also prevent a couple of bug reports from the |
27 |
users in the future. |
28 |
|
29 |
Regards, |
30 |
Petteri Räty (Betelgeuse) |
31 |
-----BEGIN PGP SIGNATURE----- |
32 |
Version: GnuPG v1.4.2 (GNU/Linux) |
33 |
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org |
34 |
|
35 |
iD8DBQFC9nMtcxLzpIGCsLQRAlzZAJ4kdzlqoMqAEUkzTtGIx1yrmTh5AQCeKWGA |
36 |
Q+KqbGA8Fn5LhZzUCC+8z5E= |
37 |
=86C3 |
38 |
-----END PGP SIGNATURE----- |
39 |
-- |
40 |
gentoo-dev@g.o mailing list |