Comments (17)
I'm running v0.11.1, fwiw.
So... should I close this issue and open a new issue for that?
from lychee.
that's a server configuration issue i believe you should address it directly, not ignore it.
from lychee.
@lebensterben - Linking to someone else's domain. I'd love to fix their website for them, but unfortunately I'm not that good of a hacker yet! 😂
Also, --require-https
appears to be recommending I use https for e.g. this link even though it gives an invalid cert error over https...
from lychee.
both http://www.palitext.com/JPTS_scans/JPTS_2007_XXIX.pdf and https://www.palitext.com/JPTS_scans/JPTS_2007_XXIX.pdf are 404 so i don't understand why would it tell you to use https.
from lychee.
we currently group results by their status, success, failure, timeout, ignored, etc.
I now think we should instead group them by levels such as
- Info: Success, ignored
- Warn: Not using HTTPS, not wrapping URL in angle bracket in Markdown file (this is not implemented)
- Error: Failure, timeout
from lychee.
Oh, I'm sorry. The real link was the home page: http://www.palitext.com/ which is a redirect. In my browser at least, the https version gives a cert error. This was the link it told me to make HTTPS
from lychee.
In my browser at least
something wrong with your browser
from lychee.
Oh? The https version works fine in your browser? No CERT_NAME error? Anyway, that's a different bug anyway. This task is for excluding domains from https enforcement 😁
from lychee.
I object this proposal because it will make CLI options very complicated.
Instead I proposed #960 (comment) so that this becomes a warning instead of an error for CI.
from lychee.
https://www.palitext.com/ produces a cert error for me as well.
Don't want to add a CLI option for it, because it's quite a special case.
You could run lychee twice:
lychee --require-https --exclude palitext.com ...
lychee --exclude .* --include palitext.com ...
It's a little tedious, but it has the effect you want I guess.
from lychee.
produces a cert error for me as well
Ah good! As well it should. @lebensterben, you may want to check your security settings!
You could run lychee twice:
Ah, good idea. Since this is possible with the flags as is you may close this if you like 🙂
Should I open a new Issue for the Cert Error thing?
from lychee.
I don't think my security settings is wrong... I'm testing on ios
from lychee.
Should I open a new Issue for the Cert Error thing?
What is the output you're getting?
I tried this and it looks reasonable:
echo 'https://www.palitext.com/JPTS_scans/JPTS_2007_XXIX.pdf' | lychee --require-https - ✘
Issues found in 1 input. Find details below.
[stdin]:
✗ [ERR] https://www.palitext.com/JPTS_scans/JPTS_2007_XXIX.pdf | Failed: Network error: The certificate was not trusted.
🔍 1 Total ✅ 0 OK 🚫 1 Error (HTTP:1)
from lychee.
Even though the https certificate is invalid (wrong domain name), Lychee thinks it's fine:
echo 'https://www.palitext.com' | lychee --require-https -
⠚ 1/1 ETA 0s ████████████████████ ✔ [200]
🔍 1 Total ✅ 1 OK 🚫 0 Errors
Shouldn't that be an error?
Compare to the output by curl:
curl -I https://www.palitext.com
curl: (60) SSL: no alternative certificate subject name matches target host name 'www.palitext.com'
More details here: https://curl.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
from lychee.
Strange, I'm getting the expected error:
echo 'https://www.palitext.com' | lychee --require-https - ✘
Issues found in 1 input. Find details below.
[stdin]:
✗ [ERR] https://www.palitext.com/ | Failed: Network error: The certificate was not trusted.
🔍 1 Total ✅ 0 OK 🚫 1 Error (HTTP:1)
...even without --require-https
:
echo 'https://www.palitext.com' | lychee - ✘
Issues found in 1 input. Find details below.
[stdin]:
✗ [ERR] https://www.palitext.com/ | Failed: Network error: The certificate was not trusted.
🔍 1 Total ✅ 0 OK 🚫 1 Error (HTTP:1)
from lychee.
Openned #966 for the SSL issue 😊
from lychee.
So... should I close this issue and open a new issue for that?
Yup, let's move the discussion over to #966. Thanks!
from lychee.
Related Issues (20)
- Improve reporting of redirects and excluded links HOT 7
- Possible redirect loop in lychee 1.3.0, may be resolved on nightly HOT 2
- Improve --exclude regular expression examples HOT 1
- Link Checker Report HOT 1
- Nightly tag is missing pre-builts binaries HOT 3
- Link Checker Report
- Support HTTP request method fallback HOT 3
- --accept says "invalid digit found in string" for documentation example HOT 2
- Read .gitignore HOT 2
- Cannot load configuration file: invalid type: integer `200`, expected a string HOT 7
- Link Checker Report
- accept 429 code not taken in account HOT 5
- Link Checker Report
- Link Checker Report
- include_mail and exclude_mail flags do not work from config file HOT 5
- Output format json is breaking when there are warnings HOT 1
- Pre-Commit Hook HOT 1
- Check for anchors in destination page? HOT 5
- Small bug with --include-fragments and headers with backticks HOT 7
- Improve error message for insecure URL
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from lychee.