Open stefaang opened 6 years ago
The firmware ships without ca certificates (or outdated certs) and uses wget --no-check-certificate too often. We can get safer downloads by getting the mozilla ca bundle first.
curl --remote-name --time-cond cacert.pem https://curl.haxx.se/ca/cacert.pem mv cacert.pem /etc/ssl/cert.pem
Default Entware busybox wget also doesn't support HTTPS
wget: not an http or ftp url
Maybe best to use curl for more reliable downloads during package installation.
The firmware ships without ca certificates (or outdated certs) and uses wget --no-check-certificate too often. We can get safer downloads by getting the mozilla ca bundle first.