1 Jun
2017
1 Jun
'17
3:28 a.m.
Le 01/06/2017 à 12:23, Cory Benfield a écrit :
No it can’t.
OpenSSL builds chains differently, and disregards some metadata that Windows and macOS store, which means that cert validation will work differently than in the system store. This can lead to pip accepting a cert marked as “untrusted for SSL”, for example, which would be pretty bad.
Are you claiming that OpenSSL certificate validation is insecure and shouldn't be used at all? I have never heard that claim before. Regards Antoine.