Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://mail.python.org/pipermail/python-dev/2014-September/136210.html below:

Enabling certificate validation by default!

• Previous message: [Python-Dev] PEP 476: Enabling certificate validation by default!
• Next message: [Python-Dev] PEP 476: Enabling certificate validation by default!
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 09/03/2014 10:15 AM, Alex Gaynor wrote:
> Ethan Furman writes:
>>
>> I apologize if I missed this point, but if we have the source code then it is
>> possible to go in and directly modify the application/utility to be able to
>> talk over https to a router with an invalid certificate?  This is an option
>> when creating the ssl_context?
>
> Yes, it's totally possible to create (and pass to ``http.client``) an
> ``SSLContext`` which doesn't verify various things. My proposal is only about
> changing what happens when you don't explicitly pass a context.

Excellent.  Last question (I hope): it is possible to (easily) create an SSLContext that will verify against a 
self-signed certificate?

--
~Ethan~

• Previous message: [Python-Dev] PEP 476: Enabling certificate validation by default!
• Next message: [Python-Dev] PEP 476: Enabling certificate validation by default!
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4