[issue10441] some stdlib modules need to be updated to handle SSL certificate validation
Antoine Pitrou
report at bugs.python.org
Wed Nov 17 11:31:30 CET 2010
Antoine Pitrou <pitrou at free.fr> added the comment:
> Are you referring to
> http://code.python.org/hg/branches/py3k/rev/86f97255bfc8
>
> where there is now
> "
> 2.29 + .. warning::
> 2.30 + If neither *cafile* nor *capath* is specified, an HTTPS request
> 2.31 + will not do any verification of the server's certificate.
> "
> This doesnt' by default check the certificate does it ?
> IMHO it should use a sane system capath by default and do the checking.
I'm afraid Python has no business validating and distributing CA
certificates. You have to use what is provided by your system libraries,
if possible, and otherwise bundle your own.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue10441>
_______________________________________
More information about the Python-bugs-list
mailing list