Browse Source
Per NCC-2016-017, wget was run with --no-check-certificate, which means that the connection can be man-in-the-middled, even if we are verifying the integrity of the params later via hash sums. The rationale cited in the Bash comments does not stand up to scrutiny. There's really no persuasive reason not to verify certificates. Fixes #1346.pull/4/head
Kevin Gallagher
8 years ago
1 changed files with 0 additions and 5 deletions
Loading…
Reference in new issue