search

WDCommunity / wdpksrc

Cross compilation framework to create native packages for the Western Digital My Cloud
BSD 3-Clause "New" or "Revised" License
214 stars 54 forks source link

Use secure downloads #13

Open stefaang opened 6 years ago

stefaang commented 6 years ago

The firmware ships without ca certificates (or outdated certs) and uses wget --no-check-certificate too often. We can get safer downloads by getting the mozilla ca bundle first.

curl --remote-name --time-cond cacert.pem https://curl.haxx.se/ca/cacert.pem
mv cacert.pem /etc/ssl/cert.pem
stefaang commented 5 years ago

Default Entware busybox wget also doesn't support HTTPS

wget: not an http or ftp url

Maybe best to use curl for more reliable downloads during package installation.