Joined: 05 Oct 2008 Posts: 646 Location: Helsinki, Finland / nr. Alkmaar, Netherlands
Posted: Mon Aug 21, 2023 13:36 Post subject: New f/w build 53396, but inaccessible using easyddup script
Error message:
root@XR500:/opt/easyddup# easyddup.sh
curlerror=60
Something went wrong getting the online build list for year 2023.
...
Other ways of downloading probably work again after the certificate expired yesterday.
I have no clue as to who can/could/should do what to make easyddup/curl work with the new certificate.
My remote router, which is in use, but otherwise left alone for over a month now, shows the same error.
Joined: 05 Oct 2008 Posts: 646 Location: Helsinki, Finland / nr. Alkmaar, Netherlands
Posted: Mon Aug 21, 2023 15:03 Post subject:
The traditional access through a web page was also broken yesterday, but not anymore. Something was already done. Which made me think that perhaps I need to do something, top. Other than just wait.
Thanks.
The traditional access through a web page was also broken yesterday, but not anymore. Something was already done. Which made me think that perhaps I need to do something, top. Other than just wait.
Thanks.
Joined: 05 Oct 2008 Posts: 646 Location: Helsinki, Finland / nr. Alkmaar, Netherlands
Posted: Mon Aug 21, 2023 20:09 Post subject:
The traditional access through a web page was also broken yesterday, but not anymore. Something was already done. Which made me think that perhaps I need to do something, top. Other than just wait.
Thanks.
At the time of my previous post, using https:// did *NOT* allow the usual bypass which now does work (proceed to sitename (unsafe) in chrome), as I've just tested just now. Maybe your experience was different, maybe it was a cache problem on my end, maybe the "workaround" to proceed to http is what was fixed. Arguing about the semantics and details never solves anything. _________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
Joined: 03 Nov 2015 Posts: 313 Location: Florida, USA
Posted: Tue Aug 22, 2023 19:42 Post subject:
dale_gribble39 wrote:
At the time of my previous post, using https:// did *NOT* allow the usual bypass which now does work (proceed to sitename (unsafe) in chrome), as I've just tested just now.
I updated yesterday and Debian11/Firefox and Win10/Edge both thru up the unsafe/certificate flags, but both allowed me to continue and download. _________________ ......All GOOD here... Just Handshakes and Time Stamps !......
Joined: 08 May 2018 Posts: 13883 Location: Texas, USA
Posted: Tue Aug 22, 2023 20:07 Post subject:
Not all browsers react the same. For example, SRWare Iron (JUST NOW):
Quote:
Your connection is not private
Attackers might be trying to steal your information from download1.dd-wrt.com (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERT_DATE_INVALID
download1.dd-wrt.com normally uses encryption to protect your information. When Chromium tried to connect to download1.dd-wrt.com this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be download1.dd-wrt.com, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Chromium stopped the connection before any data was exchanged.
You cannot visit download1.dd-wrt.com right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.
There is a secondary url that the gui uses that easyddup will fall back to for certain specific errors but apparently not for certificate errors. I could release a new version that works around this certificate error but hopefully the server will be fixed and stop generating certificate errors.
The traditional access through a web page was also broken yesterday, but not anymore. Something was already done.
Yes something incomplete must have been done but the primary url (posted above) used by easyddup is still failing.
I posted a new version in the sticky easyddup thread in "Contributions Upload" to work around this issue using a new setting in easyddup.ini so take a look. Posting in that thread or a PM has a better chance of getting my attention than starting a new thread.
Joined: 05 Oct 2008 Posts: 646 Location: Helsinki, Finland / nr. Alkmaar, Netherlands
Posted: Fri Aug 25, 2023 11:52 Post subject:
This latest update of easyddup to 0.9.3 is very welcome since the certificate problem seems to persist.
While we're waiting for the certificate to be renewed, the new option is, of course, just another way of circumventing the security certificate having expired.
