[issue5639] Support TLS SNI extension in ssl module
Mark Nottingham
report at bugs.python.org
Wed Jan 8 04:49:16 CET 2014
Mark Nottingham added the comment:
This is *not* a feature request, it's a bug fix in the underlying protocols.
Client sides that do not send SNI are actively hurting the Web and the Internet by constraining the deployment of TLS.
The closest analogy would be if Python's HTTP client side didn't emit a Host header, and the excuse were "But we only advertise ourselves as HTTP/1.0." The biggest difference being that this has additional security impact.
The pain of lack of support for SNI is completely borne by the server-side, not the client (here, Python). As such, this is not a feature for Python client-side developers, but an interop / scaling / security issue for the Web and Internet overall.
----------
nosy: +mnot
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue5639>
_______________________________________
More information about the Python-bugs-list
mailing list