Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from http://mail.python.org/pipermail/python-dev/2017-January/147295.html below:

[Python-Dev] SSL certificates recommendations for downstream python packagers

• Previous message (by thread): [Python-Dev] SSL certificates recommendations for downstream python packagers
• Next message (by thread): [Python-Dev] SSL certificates recommendations for downstream python packagers
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2017-01-30 22:19, David Cournapeau wrote:
> Hm. Is this documented anywhere ? We have customers needing
> "private/custom" certificates, and I am unsure where to look for.

For full control it is advised to use a custom SSLContext that only
loads the internal CA.
https://docs.python.org/3/library/ssl.html#ssl.create_default_context

With OpenSSL you can also set SSL_CERT_FILE and SSL_CERT_DIR env vars.
It doesn't work with LibreSSL, though.

import os, ssl
os.environ['SSL_CERT_FILE'] = '/path/to/internalca.pem'
os.environ['SSL_CERT_DIR'] = os.devnull

ctx = ssl.create_default_context()

Christian

• Previous message (by thread): [Python-Dev] SSL certificates recommendations for downstream python packagers
• Next message (by thread): [Python-Dev] SSL certificates recommendations for downstream python packagers
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4