This is the mail archive of the
mailing list for the Cygwin project.
Re: need working cygwin tool for https download
- From: Brian Dessent <brian at dessent dot net>
- To: cygwin at cygwin dot com
- Date: Wed, 06 Jun 2007 04:01:29 -0700
- Subject: Re: need working cygwin tool for https download
- References: <BAY108-F1E601C971469D58E23D3DBE270@phx.gbl>
- Reply-to: cygwin at cygwin dot com
Mike Marchywka wrote:
> curl --user-agent "Mozilla/4.0" --anyauth -d "logon=xxx"
> -d "password=xxxc" -c cookies -L "https://www.affymetrix.com/analysis/netaf
And what is the exact error or failure? curl works just fine with
https, you can verify that your installation works with a site that has
a known-good cert, such as:
$ curl -o /dev/null https://login.yahoo.com/
If you want to use https with a command line tool you need to determine
who signed the site's certificate and if that CA's cert is included in
the stock CA-bundle which for curl is
/usr/share/curl/curl-ca-bundle.crt. If it's not in the bundle you need
to specify it with --cacert or --capath. Read the man page and don't be
confused by --cert which is something very different and unrelated
unless you yourself have a peer cert and the website expects it (and if
you don't know, you don't.)
If you can't do any of this, or the site is using self-signed/snake oil,
then you can use -k which means don't verify the site's certificate.
The connection is still encrypted and cannot be snooped by third
parties, but there's no assurance that the party you are talking to is
who them claim to be.
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html