--no-check-certificate
Don't check the server certificate against the available certificate authorities. Also don't require
the URL host name to match the common name presented by the certificate.
As of Wget 1.10, the default is to verify the server's certificate against the recognized certificate
authorities, breaking the SSL handshake and aborting the download if the verification fails.
Although this provides more secure downloads, it does break interoperability with some sites that
worked with previous Wget versions, particularly those using self-signed, expired, or otherwise
invalid certificates. This option forces an "insecure" mode of operation that turns the certificate
verification errors into warnings and allows you to proceed.
If you encounter "certificate verification" errors or ones saying that "common name doesn't match
requested host name", you can use this option to bypass the verification and proceed with the
download. Only use this option if you are otherwise convinced of the site's authenticity, or if you
really don't care about the validity of its certificate. It is almost always a bad idea not to check
the certificates when transmitting confidential or important data.
|