[Python-Dev] Enable Hostname and Certificate Chain Validation (original) (raw)
Donald Stufft donald at stufft.io
Wed Jan 22 16:10:36 CET 2014
- Previous message: [Python-Dev] Enable Hostname and Certificate Chain Validation
- Next message: [Python-Dev] Enable Hostname and Certificate Chain Validation
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Jan 22, 2014, at 10:05 AM, Antoine Pitrou <solipsis at pitrou.net> wrote:
On Wed, 22 Jan 2014 15:33:21 +0100 Christian Heimes <christian at python.org> wrote:
About two months ago (maybe three) I proposed to deprecated implicit SSL context, unverified certs and unverified hostnames all together. But I was voted down. Donald made a similar attempt half an year ago, too. So why are you trying a third time? Do you have any new arguments compared to last time?
See my other email, Last time I tried I was told the reason was there wasn’t a reliable enough default certificate store that worked on platforms such as Windows and Python was unwilling to ship it’s own certificate bundle.
Christian has improved this situation so that it appears that this issue has been largely resolved.
Donald Stufft PGP: 0x6E3CBCE93372DCFA // 7C6B 7C5D 5E2B 6356 A926 F04F 6E3C BCE9 3372 DCFA
-------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 801 bytes Desc: Message signed with OpenPGP using GPGMail URL: <http://mail.python.org/pipermail/python-dev/attachments/20140122/22177bf0/attachment-0001.sig>
- Previous message: [Python-Dev] Enable Hostname and Certificate Chain Validation
- Next message: [Python-Dev] Enable Hostname and Certificate Chain Validation
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]