[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] Default filename for 301 redirect

From: Ángel González
Subject: Re: [Bug-wget] Default filename for 301 redirect
Date: Mon, 10 Nov 2014 23:23:42 +0100
User-agent: Thunderbird

On 10/11/14 21:24, Random Coder wrote:
I recently upgraded from an old version of Wget to 1.16 and noticed that
the default filename for a simple download is no longer based off the final
redirect URL, but rather on the initial URL, for instance, this command

wget http://goo.gl/beYoGO

Would previously create a file called "logo11w.png", but it's now creating
a file called "beYoGO".  Is this an intentional change?
Yes, using the final could be dangerous (eg. suppose it redirected to .bashrc). This vulnerability got the identifier CVE-2010-2252 <http://people.ubuntu.com/%7Eubuntu-security/cve/CVE-2010-2252>

You can get the old behavior setting the --trust-server-names parameter.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]