How secure is using cmdline https queries
I am using WGET on linux to scrape fields displayed on secure websites (HTTPS). I pull in the html, parse it in Perl to get realtime info off fields on various sites
(Yahoo,...). They all require authentication which can be passed to the WGET query, which works perfect.
My question is simply: if I'm in a HTTPS tunnel launched from a Linux cmdline, can I be snooped? None of the data transfered is sensitive, except the passwords can be compromised. Correct?
I am mid-networking level and I'm not sure if someone can snoop the actual command used with wget which would have my id/pass in it.
It is my belief using the same https link you would use in Windows Explorer, on the cmdline in Linux; would be as secure as logging into your bank account. Am I correct? Can anyone offer a good link that might help?
So, I am asking; is just the fact you're using a https link guarantee commands sent through it cannot be seen?. I am referring to during the time the wget command (containing the website creds) is executed in Linux, which is then implemented at the website.
Thanks
Last edited by det98; 02-04-2016 at 08:55 PM.
|