[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] Overly permissive hostname matching

From: Jeffrey Walton
Subject: Re: [Bug-wget] Overly permissive hostname matching
Date: Wed, 19 Mar 2014 11:42:09 -0400

On Wed, Mar 19, 2014 at 11:38 AM, Daniel Kahn Gillmor
<address@hidden> wrote:
> On 03/19/2014 11:26 AM, Jeffrey Walton wrote:
>> wget "http://publicsuffix.org/list/effective_tld_names.dat"; -O $MOZILLA_LIST
> I recommend using the following HTTPS URL instead, so that you have some
> level of cryptographic verification of the data before loading it:
> https://hg.mozilla.org/mozilla-central/raw-file/tip/netwerk/dns/effective_tld_names.dat
> (this is what i use to update the debian publicsuffix package)
Ah, good point. I did not even notice that.


reply via email to

[Prev in Thread] Current Thread [Next in Thread]