| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
One of the java packages, jdictrayapi, is only available over ssl. Here |
| 5 |
is the output I get if I try downloading it with wget: |
| 6 |
|
| 7 |
betelgeuse@pena ~/java $ wget |
| 8 |
https://jdic.dev.java.net/files/documents/880/16466/jdic-0.9.1-src.zip |
| 9 |
- --23:37:11-- |
| 10 |
https://jdic.dev.java.net/files/documents/880/16466/jdic-0.9.1-src.zip |
| 11 |
=> `jdic-0.9.1-src.zip' |
| 12 |
Resolving jdic.dev.java.net... 64.125.133.206 |
| 13 |
Connecting to jdic.dev.java.net|64.125.133.206|:443... connected. |
| 14 |
ERROR: Certificate verification error for jdic.dev.java.net: unable to |
| 15 |
get local issuer certificate |
| 16 |
To connect to jdic.dev.java.net insecurely, use `--no-check-certificate'. |
| 17 |
Unable to establish SSL connection. |
| 18 |
|
| 19 |
It is usually not a problem for users because the file gets mirrored but |
| 20 |
when doing version bumps I come across this again. As a solution I added |
| 21 |
- --no-check-certificate to my FETCHCOMMAND so this will not bother me |
| 22 |
again. |
| 23 |
So what about adding this as the default for everyone? The verification |
| 24 |
of the download is done on our side so we don't really need the ssl |
| 25 |
certificate checking and it would probably be (very?) little faster |
| 26 |
without checking. It could also prevent a couple of bug reports from the |
| 27 |
users in the future. |
| 28 |
|
| 29 |
Regards, |
| 30 |
Petteri Räty (Betelgeuse) |
| 31 |
-----BEGIN PGP SIGNATURE----- |
| 32 |
Version: GnuPG v1.4.2 (GNU/Linux) |
| 33 |
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org |
| 34 |
|
| 35 |
iD8DBQFC9nMtcxLzpIGCsLQRAlzZAJ4kdzlqoMqAEUkzTtGIx1yrmTh5AQCeKWGA |
| 36 |
Q+KqbGA8Fn5LhZzUCC+8z5E= |
| 37 |
=86C3 |
| 38 |
-----END PGP SIGNATURE----- |
| 39 |
-- |
| 40 |
gentoo-dev@g.o mailing list |
Archives