The bug/mis-feature is that if you use the -k option and specify an "id@pawword:" part before the server in teh URL then that id@pawword gets edited into the changed URL's. Given that the logs omit the password this is a security issue. Since a browser may not handle the resultant URL it is a bug. ========== Also. wget does not retrieve images mentioned in JavaScript such as the following: function myClick(pageX,pageY) { dynArray[dynDiv] = new makeNewElement("div" + String(dynDiv)); dynArray[dynDiv].eInnerHTML = "<img src='S.jpg' width='37' height='26' alt='S'>"; .... This is more of an observation, rather than a bug report....