X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:reply-to:subject:to:references:from:message-id
	:date:mime-version:in-reply-to:content-type
	:content-transfer-encoding; q=dns; s=default; b=bkG00PIjAZ9XM182
	5rWrFXIUrwAqYbr8QlUjfj8FiHKl7LwMOXdwokXVDUolIHx3g8/fFtGSuY2vQeFD
	yr7ln2otDw/kDav8QT98Bl1wsEfkgXOX4+MDQ9lm9KoXkpjUDCXzj+msexLLqbdK
	YPRMoZgpHE7wwqpVMF5+xP3Bl/Q=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:reply-to:subject:to:references:from:message-id
	:date:mime-version:in-reply-to:content-type
	:content-transfer-encoding; s=default; bh=jSRcv5UTvn+XkgM2PRBikV
	qiC+k=; b=duonyvQgkxLm6c1nk0MjcKH3Le7KxMbWbmlPn5FEjpOFa1vcP7VVNj
	nGGm2837Ep2eknkAxfz3jHI7ZLQkTwTNHMXyJVgOHxo3l2NStj4d3iqIXiF7wNs5
	L3uKNzqju3RvgjigA2jsge9c/nivriq5j8RPyULO0pG9NNhrZIbn0=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-4.1 required=5.0 tests=AWL,BAYES_00,EXECUTABLE_URI,GIT_PATCH_2,KAM_EXEURI,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.2 spammy=negotiation, appliance, age, states
X-HELO: smtp-out-so.shaw.ca
X-Authority-Analysis: v=2.2 cv=UpATD64B c=1 sm=1 tr=0 a=MVEHjbUiAHxQW0jfcDq5EA==:117 a=MVEHjbUiAHxQW0jfcDq5EA==:17 a=IkcTkHD0fZMA:10 a=w_pzkKWiAAAA:8 a=RYGGx9rUFB8euhDJSoUA:9 a=LIRPmTOcE0N9rGmf:21 a=mWRy_8K-7P8-M2NU:21 a=QEXdDO2ut3YA:10 a=sRI3_1zDfAgwuvI8zelB:22
Reply-To: Brian DOT Inglis AT SystematicSw DOT ab DOT ca
Subject: Re: Updated: setup (2.880)
To: cygwin AT cygwin DOT com
References: <CAEhDDbB9B=cxa1RvCQqHYzYRT3bHanJ7MjJSS30u53k35eHuOQ AT mail DOT gmail DOT com> <BN6PR2001MB1074F5546A217174ABC51170F1DC0 AT BN6PR2001MB1074 DOT namprd20 DOT prod DOT outlook DOT com>
From: Brian Inglis <Brian DOT Inglis AT SystematicSw DOT ab DOT ca>
Message-ID: <5370dce1-012a-1442-86c0-28a9232a1486@SystematicSw.ab.ca>
Date: Tue, 27 Jun 2017 23:33:59 -0600
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <BN6PR2001MB1074F5546A217174ABC51170F1DC0@BN6PR2001MB1074.namprd20.prod.outlook.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-CMAE-Envelope: MS4wfLXwZ2ddhZYzwyGbxKp9JLJ9oDN+6tOR+sAy0zLxX/wXXkEcNYIJw3FdKu60H5h0pCqWfEKaeQY70qrIhMh7cf2jJRmONoEK1moVDkr7hap53KXHGPQB k81XaF9fwx3MftVpXyvSeyEPDeTEaYbUitDaOF1jZE2G3nXkYEfO/bkozNV3v81tLU6VwTTZ35Glvg==
X-IsSubscribed: yes

On 2017-06-27 14:55, Nellis, Kenneth wrote:
> From: Csaba Raduly 
>> I also couldn't reproduce your scenario.
>> ...
>> Since it's reproducible for you, you could (if you're curious) run
>> wget with the -d (--debug) switch or break out the heavy artillery:
>> install Wireshark and look at the HTTP headers sent and received by
>> wget.
> Thanx, Csaba, for your interest. Another test with -d is easy enough,
> so here it is:
> $ wget -d -O setup-x86_64.exe http://cygwin.com/setup-x86_64.exe
...
> ---request begin---
> GET /setup-x86_64.exe HTTP/1.1
> User-Agent: Wget/1.19.1 (cygwin)
> Accept: */*
> Accept-Encoding: identity
> Host: cygwin.com
> Connection: Keep-Alive
> ---request end---
> HTTP request sent, awaiting response...
> ---response begin---
> HTTP/1.1 200 OK
> Server: Apache
> ETag: "16b1f9e-dd613-55161a558184f"
> Accept-Ranges: bytes
> Cache-Control: max-age=0
> Expires: Tue, 27 Jun 2017 20:40:06 GMT
> Vary: Accept-Encoding
> Content-Encoding: gzip
> Content-Security-Policy: default-src 'self' http: https:
> Keep-Alive: timeout=30, max=20
> Content-Length: 877562
> Content-Type: application/octet-stream
> Last-Modified: Wed, 07 Jun 2017 16:58:31 GMT
> Date: Tue, 27 Jun 2017 20:39:27 GMT
> Age: 0
> Via: 1.1 ironport.tms.local:80 (Cisco-WSA/10.1.0-204)
> Connection: keep-alive
> ---response end---
...
> $ file *.exe
> setup-x86_64.exe: gzip compressed data, from Unix
> $
> Note the response from the Apache server:
>> Content-Encoding: gzip
> Not sure why it would do that. Maybe my wget could be more specific.
> But my updated script (per advice from others) is working fine.

Try:
$ rm -f setup-x86_64.exe
$ wget -d -N -nv --no-cache --no-http-keep-alive --no-proxy \
	https://cygwin.com/setup-x86_64.exe
and see if it can bypass the effects of the appliance, or get it to
respond as requested, but it may download and cache gzipped content
that pass its scans, and serve them as is, ignoring client content
negotiation. Not encouraging when a security product web site states
in its Features [emphasis added]:
"*When* compromise occurs, quickly determine the scope of the damage,
remediate it, and bring operations back to normal."

-- 
Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple