Jerome Etienne.js Blog

Around JavaScript, node.js, WebGL and cool HTML5 game stuff

Wget Thinks github.com Is a Threat

This is just a little post on a oddity. As a coder, i use github and wget everyday or close. When i do, i see this message.

$ wget https://github.com/jeromeetienne/nmod/raw/master/nmod
...
ERROR: certificate common name `*.github.com' doesn't match requested
host name `github.com'.
To connect to github.com insecurely, use `--no-check-certificate'.

This message puzzles me quite a bit… wget thinks github is a threat … and requires an explicit action from you (adding --no-check-certificate) to be sure you are willing to take this risk . The risk of downloading files from github… ok lets admit it, this is ridiculous. wget distrusting github is like … ls distrusting cd :)

According to github, this is actually a wget bug which has been reported and fixed but not release , and point to a bug from 2007!!!! Dunno if this is true, or who is at the best place to fix the issue… and the purpose of this post is not to do finger pointing.

Lets note that everybody is from open source world here. wget is from gnu, not only under gpl, but even got his copyright assigned to fsf. What to say about github and opensource ? well they got millions of repositories and most of them are open source software.

This post is not meant to be a rant. More to put the light on an oddity. something that i see as a symptom of communication issue in the opensource community.

Let do better! :)