wget-dev
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Wget-dev] wget2 | Implement NTLM authentication (Was: Can't authent


From: Vlad
Subject: Re: [Wget-dev] wget2 | Implement NTLM authentication (Was: Can't authenticate via HTTP) (#388)
Date: Wed, 20 Jun 2018 11:31:08 +0000

Hey there,

So I did all the steps again, but it still ain't working :(. So either the fix 
didn't fix it, or my symlink is wrong (not sure how to tell).

Here's the debug:

```
20.122543.822 name=check-certificate value=--user-agent=Mozilla/5.0 (Macintosh; 
Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) 
Chrome/66.0.3359.139 Safari/537.36 invert=1
20.122543.823 name=user-agent value=Mozilla/5.0 (Macintosh; Intel Mac OS X 
10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 
Safari/537.36 invert=0
20.122543.823 name=http-user value=myuser invert=0
20.122543.823 name=ask-password value=--debug invert=0
20.122543.823 name=debug value=w2.mydomain.com invert=0
20.122543.823 Local URI encoding = 'UTF-8'
20.122543.823 Input URI encoding = 'UTF-8'
20.122543.823 Fetched HSTS data from '/Users/myuser/.wget-hsts'
20.122543.823 Fetched HPKP data from '/Users/myuser/.wget-hpkp'
20.122543.823 Fetched OCSP hosts from '/Users/myuser/.wget-ocsp_hosts'
20.122543.823 Fetched OCSP fingerprints from '/Users/myuser/.wget-ocsp'
Password:
20.122547.401 set_exit_status(0)
20.122547.401 *url = w2.mydomain.com
20.122547.401 local filename = 'index.html'
20.122547.401 host_add_job: job fname index.html
20.122547.401 host_add_job: 0x7f86f0f00360 http://w2.mydomain.com
20.122547.401 host_add_job: qsize 1 host-qsize=1
20.122547.401 queue_size: qsize=1
20.122547.401 queue_size: qsize=1
20.122547.401 queue_size: qsize=1
20.122547.401 [0] action=1 pending=0 host=0x0
20.122547.401 dequeue job http://w2.mydomain.com
20.122547.401 resolving w2.mydomain.com:80...
20.122547.407 has IP:80
20.122547.407 trying IP:80...
20.122547.407 established connection w2.mydomain.com
[0] Downloading 'http://w2.mydomain.com' ...
20.122547.407 cookie_create_request_header for host=w2.mydomain.com path=(null)
20.122547.407 # sent 320 bytes:
GET / HTTP/1.1
Host: w2.mydomain.com
Accept-Encoding: gzip, deflate, bzip2, xz, lzma
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 
(KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36
Connection: keep-alive

20.122547.407 [0] action=2 pending=1 host=0x7f86f0f001e0
20.122547.407 ### req 0x7f86f0e00700 pending requests = 1
20.122547.671 # got header 206 bytes:
HTTP/1.1 301 Moved Permanently
Date: Wed, 20 Jun 2018 11:25:47 GMT
Server: Server
Location: https://w2.mydomain.com:443/
Content-Length: 234
nnCoection: close
Content-Type: text/html; charset=iso-8859-1

20.122547.671 Falling back to Content-Encoding 'identity'
20.122547.671 method 2
HTTP response 301 Moved Permanently [http://w2.mydomain.com]
20.122547.671 keep_alive=0
20.122547.671 closing connection
20.122547.671 *url = https://w2.mydomain.com:443/
20.122547.671 *3 https://w2.mydomain.com:443/
Adding URL: https://w2.mydomain.com:443/
20.122547.671 host_add_job: job fname index.html
20.122547.671 host_add_job: 0x7f86f0c23550 https://w2.mydomain.com:443/
20.122547.671 host_add_job: qsize 2 host-qsize=1
20.122547.671 _host_remove_job: 0x7f86f0f00360
20.122547.671 host_remove_job: qsize=1 host->qsize=0
20.122547.672 [0] action=1 pending=0 host=0x7f86f0f001e0
20.122547.673 [0] action=1 pending=0 host=0x0
20.122547.673 dequeue job https://w2.mydomain.com:443/
20.122547.673 resolving w2.mydomain.com:443...
20.122547.673 main: wake up
20.122547.673 queue_size: qsize=1
20.122547.688 has IP:443
20.122547.688 trying IP:443...
20.122547.688 GnuTLS init
20.122547.688 Certificates loaded: -1
20.122547.689 GnuTLS init done
20.122547.689 TLS False Start requested
WARNING: The certificate is NOT trusted. The certificate issuer is unknown. The 
certificate chain uses insecure algorithm.
20.122548.090 TLS False Start: off
----
Certificate info [0]:
  Valid since: Thu Oct  5 17:00:47 2017
  Expires: Fri Oct  5 17:00:47 2018
  Fingerprint: FAKE
  Serial number: FAKE
  Public key: RSA, Low (1024 bits)
  Version: #3
  DN: C=US,ST=Washington,L=Seattle,O=mydomain.com Inc.,CN=w2.mydomain.com
  Issuer's DN: DC=com,DC=mydomain,DC=ant,CN=mydomain.com InfoSec CA G3
  Issuer's OID: FAKE
  Issuer's UID: FAKE
----
Key Exchange: RSA
Protocol: TLS1.0
Certificate Type: X.509
Cipher: AES-128-CBC
MAC: SHA1
----
20.122548.091 Handshake completed
20.122548.091 established connection w2.mydomain.com
[0] Downloading 'https://w2.mydomain.com:443/' ...
20.122548.091 cookie_create_request_header for host=w2.mydomain.com path=
20.122548.091 # sent 320 bytes:
GET / HTTP/1.1
Host: w2.mydomain.com
Accept-Encoding: gzip, deflate, bzip2, xz, lzma
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 
(KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36
Connection: keep-alive

20.122548.091 [0] action=2 pending=1 host=0x7f86f0c232a0
20.122548.091 ### req 0x7f86f0c235f0 pending requests = 1
20.122548.224 # got header 245 bytes:
HTTP/1.1 401 Unauthorized
Date: Wed, 20 Jun 2018 11:25:48 GMT
Server: Server
WWW-Authenticate: Negotiate
WWW-Authenticate: Basic realm="ANT (Windows) Login"
Content-Length: 381
Cneonction: close
Content-Type: text/html; charset=iso-8859-1

20.122548.225 Falling back to Content-Encoding 'identity'
20.122548.225 method 2
HTTP ERROR response 401 Unauthorized [https://w2.mydomain.com:443/]
20.122548.225 keep_alive=0
20.122548.225 closing connection
20.122548.225 [0] action=1 pending=0 host=0x7f86f0c232a0
20.122548.225 dequeue job https://w2.mydomain.com:443/
20.122548.225 Found dns cache entry w2.mydomain.com:443
20.122548.225 main: wake up
20.122548.225 queue_size: qsize=1
20.122548.225 trying IP:443...
20.122548.225 TLS False Start requested
WARNING: The certificate is NOT trusted. The certificate issuer is unknown. The 
certificate chain uses insecure algorithm.
20.122548.636 TLS False Start: off
----
Certificate info [0]:
  Valid since: Thu Oct  5 17:00:47 2017
  Expires: Fri Oct  5 17:00:47 2018
  Fingerprint: FAKE
  Serial number: FAKE
  Public key: RSA, Low (1024 bits)
  Version: #3
  DN: C=US,ST=Washington,L=Seattle,O=mydomain.com Inc.,CN=w2.mydomain.com
  Issuer's DN: DC=com,DC=mydomain,DC=ant,CN=mydomain.com InfoSec CA G3
  Issuer's OID: FAKE
  Issuer's UID: FAKE
----
Key Exchange: RSA
Protocol: TLS1.0
Certificate Type: X.509
Cipher: AES-128-CBC
MAC: SHA1
----
20.122548.637 Handshake completed
20.122548.637 established connection w2.mydomain.com
[0] Downloading 'https://w2.mydomain.com:443/' ...
20.122548.637 cookie_create_request_header for host=w2.mydomain.com path=
20.122548.637 # sent 320 bytes:
GET / HTTP/1.1
Host: w2.mydomain.com
Accept-Encoding: gzip, deflate, bzip2, xz, lzma
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 
(KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36
Connection: keep-alive

20.122548.638 [0] action=2 pending=1 host=0x7f86f0c232a0
20.122548.638 ### req 0x7f86f0d016f0 pending requests = 1
20.122548.779 # got header 245 bytes:
HTTP/1.1 401 Unauthorized
Date: Wed, 20 Jun 2018 11:25:48 GMT
Server: Server
WWW-Authenticate: Negotiate
WWW-Authenticate: Basic realm="ANT (Windows) Login"
Content-Length: 381
Cneonction: close
Content-Type: text/html; charset=iso-8859-1

20.122548.779 Falling back to Content-Encoding 'identity'
20.122548.779 method 2
HTTP ERROR response 401 Unauthorized [https://w2.mydomain.com:443/]
20.122548.779 keep_alive=0
20.122548.779 closing connection
20.122548.779 set_exit_status(6)
20.122548.779 _host_remove_job: 0x7f86f0c23550
20.122548.779 host_remove_job: qsize=0 host->qsize=0
20.122548.780 [0] action=1 pending=0 host=0x7f86f0c232a0
20.122548.780 [0] action=1 pending=0 host=0x0
20.122548.780 main: wake up
20.122548.780 main: done
20.122548.781 Successfully updated '/Users/myuser/.wget-ocsp_hosts'.
20.122548.781 Saved OCSP hosts to '/Users/myuser/.wget-ocsp_hosts'
20.122548.781 Successfully updated '/Users/myuser/.wget-ocsp'.
20.122548.781 Saved OCSP fingerprints to '/Users/myuser/.wget-ocsp'
20.122548.781 blacklist http://w2.mydomain.com
20.122548.781 blacklist https://w2.mydomain.com:443/
```

Version:

```
➔ wget2 --version
GNU Wget2 1.99.1 - multithreaded metalink/file/website downloader

+digest +https +ssl/gnutls +ipv6 +iri +large-file +nls -ntlm -opie -psl +iconv 
+idn2 +zlib +lzma -brotlidec +bzip2 -http2 -gpgme
```[config.h.in](/uploads/ddd22424088cd5a1a20f1b8757fe64d7/config.h.in)

-- 
Reply to this email directly or view it on GitLab: 
https://gitlab.com/gnuwget/wget2/issues/388#note_82871544
You're receiving this email because of your account on gitlab.com.


reply via email to

[Prev in Thread] Current Thread [Next in Thread]