X-Recipient: archive-cygwin AT delorie DOT com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:subject:to:references:from:message-id:date :mime-version:in-reply-to:content-type; q=dns; s=default; b=rcEn LEIz+QzQAhjz2Bpj+LFSzJhRzE3OEwCKIgAy5F/8TeWQv4i8MTzfxFFEFKdFcFw7 uoRMrG8Oz+vRBlmP+bMRfhyWPJHE21qFakTuy+VL97IDgH8vxsOBhmyMmW8VvYxw 4W2Si235wbew47pABAcxkFHtaHPs74cxGG4ik5g= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:subject:to:references:from:message-id:date :mime-version:in-reply-to:content-type; s=default; bh=Vj0QdRQ+kx gKxdiFSkvGHyZEYuk=; b=Sgt67bsCct8d38R3A66fsvtoRiqeR++oewnhRM7M4b Xfgk5goAGbCUMk3bdjbXPLHb72dd3wZNsCaq7JAds97qTkLRzOHSQJ5Pn4AXwKWW dijhLW0MsPZYiq9SazUVsCTnHdgmCpzII2m6w8tqWxkw6IsfJJXwAF9zeJCY8idx g= Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-0.4 required=5.0 tests=BAYES_00,EXECUTABLE_URI,KAM_EXEURI,RP_MATCHES_RCVD,SPF_HELO_PASS autolearn=no version=3.3.2 spammy=issuer, UD:setup-x86_64.exe, sk:setupx, setupx86_64exe X-HELO: mx1.redhat.com Subject: Re: Cygwin certificate is not trusted? Unknown issuer? To: cygwin AT cygwin DOT com References: From: Eric Blake Openpgp: url=http://people.redhat.com/eblake/eblake.gpg Message-ID: <570EA5C9.50100@redhat.com> Date: Wed, 13 Apr 2016 14:02:17 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.7.1 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="9SOKc9x3Rc9QW0r72ur8AEPHVf9i5p5Me" X-IsSubscribed: yes --9SOKc9x3Rc9QW0r72ur8AEPHVf9i5p5Me Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 04/13/2016 01:45 PM, Kenneth Wolcott wrote: > wget fails >=20 > https://cygwin.com/setup-x86_64.exe > Resolving cygwin.com (cygwin.com)... 209.132.180.131 > Connecting to cygwin.com (cygwin.com)|209.132.180.131|:443... connected. > ERROR: The certificate of =E2=80=98cygwin.com=E2=80=99 is not trusted. > ERROR: The certificate of =E2=80=98cygwin.com=E2=80=99 hasn't got a known= issuer. I get the same on a Fedora box, but with a nicer error message: $ wget https://cygwin.com/setup-x86_64.exe --2016-04-13 14:00:44-- https://cygwin.com/setup-x86_64.exe Resolving cygwin.com (cygwin.com)... 209.132.180.131 Connecting to cygwin.com (cygwin.com)|209.132.180.131|:443... connected. ERROR: cannot verify cygwin.com's certificate, issued by =E2=80=98CN=3DDigi= Cert SHA2 High Assurance Server CA,OU=3Dwww.digicert.com,O=3DDigiCert Inc,C=3DUS= =E2=80=99: Unable to locally verify the issuer's authority. To connect to cygwin.com insecurely, use `--no-check-certificate'. So I don't think it's a bug in the just-uploaded wget 1.17.1-2. --=20 Eric Blake eblake redhat com +1-919-301-3266 Libvirt virtualization library http://libvirt.org --9SOKc9x3Rc9QW0r72ur8AEPHVf9i5p5Me Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 Comment: Public key at http://people.redhat.com/eblake/eblake.gpg Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBCAAGBQJXDqXJAAoJEKeha0olJ0NqL/wIAKAucXdh+pJU6cC4PrEbXv5/ Fp6pS71Fg0Imo112BIE5eX0ipSfaYNgeAVSddJCR0MaVjW6det/Gw1GDLksZs04p WLqc+X04gfiBf27SC7LEkC7Qa2ov43cMVBFEHvX2JawpaoSDrbKwz2x1F7IbnRd0 5E9XbJ4iaFgLSU0fkziOO3QpelWcMZfZ3kUOY4870hk1E5IJ3Yn0S2SPMIggWiXA WjxK9eLBAgjfe8hGyc0kdCUHqBgT3zerWQMaamd2mZY2NLh5TT6Mzs/gL/yjW/vG P9dzFxWNSian1ToFBQ2Jl6nNYbu0d2rRxiZfB3c63U2bbf3uHoURYGKk2wl9fTw= =3JZs -----END PGP SIGNATURE----- --9SOKc9x3Rc9QW0r72ur8AEPHVf9i5p5Me--