HTTPS Downloads - Security Issue

I recently went to to grab the latest build for 32X and was hit with some "scary" error messages in the Edge browser about the fact that the links were over http:// to download

You can see here:
Firmware OpenWrt Install URL:

Firmware OpenWrt Upgrade URL:

Firmware OpenWrt snapshot Install URL:

Firmware OpenWrt snapshot Upgrade URL:

To replicate the issue, simply use Microsoft Edge (latest version) and attempt to download and you'll be hit with a security prompt that blocks the downloads.

I saw this also a couple of weeks ago when downloading 21.02.1 images. But since I download imagebuilder and verify them with the gpg public key downloaded when 21.02 branch was released I continued with the download.


I thought that we currently had https links in the techdata / ToH pages ?

1 Like


I'm open for suggestions.

I think that the situation has changed a lot from year 2017 (the first thread), as currently both master and 21.02 already default for https with the opkg package downloads by the router itself. Routers have https support by default since August 2020 (due to WPA3 readiness).

opkg switch to https was also done in August 2020 by

Support for 19.07 will soon end, and all further releases should support https.

Also desktop browsing in general is nowadays largely https based, so I see no special reason why we should stick to promoting http downloads any more.

1 Like

OK, I will take care of changing the dataentries from http -> https during the next days.


My vote -

FYI - https links will be visible in the ToH within the next 15..30min.

Edit: Done.


This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.