Jump to content
Sign in to follow this  
daker

Direct download links not working

Recommended Posts

Direct download links .exe/dmg & torrent are not working due to a server configuration, same behavior i have seen with Chrome/Firefox, how to reproduce :

  1. Open https://releases.wildfiregames.com/0ad-0.0.21-alpha-win32.exe.torrent
  2. You'll get an SSL error, accept the cert
  3. You'll be redirect https://wildfiregames.com/0ad-0.0.21-alpha-win32.exe.torrent (which return a 404 error)

Running a wget with --no-check-certificate you will be get the same behavior :

$ LC_ALL="en_EN" wget https://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg --no-check-certificate
--2017-07-01 18:48:44--  https://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg
Resolving releases.wildfiregames.com (releases.wildfiregames.com)... 136.243.15.233
Connecting to releases.wildfiregames.com (releases.wildfiregames.com)|136.243.15.233|:443... connected.
WARNING: no certificate subject alternative name matches
	requested host name 'releases.wildfiregames.com'.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg [following]
--2017-07-01 18:48:44--  https://wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg
Resolving wildfiregames.com (wildfiregames.com)... 136.243.15.233
Connecting to wildfiregames.com (wildfiregames.com)|136.243.15.233|:443... connected.
HTTP request sent, awaiting response... 404 Not Found
2017-07-01 18:48:45 ERROR 404: Not Found.

 

  • Like 1

Share this post


Link to post
Share on other sites

@stanislas69 No need for him to do anything in a more specific sense, as this is most likely (99,99999999% sure ;):P ) due to daker using a plugin for his browser which forces https for web sites regardless of whether or not the server supports it. In a more general sense he could enable SSL for the downloads as well as the rest of the site, but that's another discussion.

@daker, please check if this is the case. Otherwise let us know, but so far it's always been the case when people have had this error =)

Share this post


Link to post
Share on other sites

@feneur true, it's HTTPS Everywhere, it works if i disable it, but using wget it won't 

$ LC_ALL="en_EN" wget http://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg
URL transformed to HTTPS due to an HSTS policy
--2017-07-01 21:05:55--  https://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg
Resolving releases.wildfiregames.com (releases.wildfiregames.com)... 136.243.15.233
Connecting to releases.wildfiregames.com (releases.wildfiregames.com)|136.243.15.233|:443... connected.
ERROR: no certificate subject alternative name matches
	requested host name 'releases.wildfiregames.com'.
To connect to releases.wildfiregames.com insecurely, use `--no-check-certificate'.
$ LC_ALL="en_EN" wget http://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg --no-check-certificate
URL transformed to HTTPS due to an HSTS policy
--2017-07-01 21:07:24--  https://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg
Resolving releases.wildfiregames.com (releases.wildfiregames.com)... 136.243.15.233
Connecting to releases.wildfiregames.com (releases.wildfiregames.com)|136.243.15.233|:443... connected.
WARNING: no certificate subject alternative name matches
	requested host name 'releases.wildfiregames.com'.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg [following]
--2017-07-01 21:07:25--  https://wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg
Resolving wildfiregames.com (wildfiregames.com)... 136.243.15.233
Connecting to wildfiregames.com (wildfiregames.com)|136.243.15.233|:443... connected.
HTTP request sent, awaiting response... 404 Not Found
2017-07-01 21:07:25 ERROR 404: Not Found.

 

Edited by daker

Share this post


Link to post
Share on other sites
Just now, daker said:

URL transformed to HTTPS due to an HSTS policy

Not sure what an HSTS policy is, but I assume that's what's causing it. Presumably it's something similar to HTTPS Everywhere for WGET?

Share this post


Link to post
Share on other sites

Yeah, wget still remember the policy from the last retries, deleting the HSTS entries makes it work

$ LC_ALL="en_EN" wget http://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg --no-check-certificate --debug 
DEBUG output created by Wget 1.17.1 on linux-gnu.

Reading HSTS entries from /home/$hostname/.wget-hsts
URI encoding = 'ANSI_X3.4-1968'
converted 'http://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg' (ANSI_X3.4-1968) -> 'https://releases.wildfiregames.com/0ad-0.0.21-alpha-osx64.dmg' (UTF-8)
URL transformed to HTTPS due to an HSTS policy

 

Edited by daker

Share this post


Link to post
Share on other sites

I have recently enabled HSTS headers for wildfiregames.com, but I didn't realize that that also includes subdomains automatically.  I'll look into it.

  • Like 3

Share this post


Link to post
Share on other sites

Maybe we can now actually serve a valid cert for releases.wildfiregames, which someone might have complained about a few months ago...

  • Like 2

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

×
×
  • Create New...