[issue10441] some stdlib modules need to be updated to handle SSL certificate validation
david
report at bugs.python.org
Sun Nov 21 03:23:06 CET 2010
david <db.pub.mail at gmail.com> added the comment:
On 21 November 2010 09:27, Antoine Pitrou <report at bugs.python.org> wrote:
>
> Antoine Pitrou <pitrou at free.fr> added the comment:
>
> Martin,
>
>> You misunderstood. I was not proposing that scripts provide a CA
>> list, but that users might deploy a CA list into their Python
>> installation, which is then picked up in the same way as you are asking
>> for on Ubuntu.
>
> Could you elaborate on what kind of scheme you are proposing?
>
> It should be noted that the default OpenSSL paths can be modified at runtime using environment variables SSL_CERT_FILE and SSL_CERT_DIR. Not sure we should document this, though.
Sorry is this question aimed at me?
No I was saying that if we can't move to a sane default then an
environmental setting or other configuration maybe nice to have to
enforce certificate checking etc.
It had nothing to do with those variables, but perhaps we would use them?
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue10441>
_______________________________________
More information about the Python-bugs-list
mailing list