[issue1589] New SSL module doesn't seem to verify hostname against commonName in certificate
Bill Janssen
report at bugs.python.org
Tue Dec 11 23:40:17 CET 2007
Bill Janssen added the comment:
Unfortunately, hostname matching is one of those ideas that seemed
better when it was thought up than it actually proved to be in practice.
I've had extensive experience with this, and have found it to almost
always an application-specific decision. I thought about this when
designing the client-side verification, and couldn't see any automatic
solution that doesn't get in the way. So the right way to do this with
Python is to write some application code that looks at the verified
identity and makes decisions based on whatever authentication algorithm
you need.
__________________________________
Tracker <report at bugs.python.org>
<http://bugs.python.org/issue1589>
__________________________________
More information about the Python-bugs-list
mailing list