[Python-Dev] Simplify and unify SSL verification
Donald Stufft
donald at stufft.io
Thu Nov 7 22:45:37 CET 2013
On Nov 7, 2013, at 4:42 PM, Christian Heimes <christian at python.org> wrote:
>>>
>>> - deprecate implicit verify_mode=CERT_NONE. Python 3.5 will default
>>> to CERT_REQUIRED.
>>
>> -0.9. This breaks compatibility and doesn't achieve anything, since
>> there's no reliable story for CA certs.
>
> I'd like to move to "secure by default". The CA cert situation is solved
> on most platforms.
Please Yes, secure by default +1000
-----------------
Donald Stufft
PGP: 0x6E3CBCE93372DCFA // 7C6B 7C5D 5E2B 6356 A926 F04F 6E3C BCE9 3372 DCFA
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mail.python.org/pipermail/python-dev/attachments/20131107/e88c7f94/attachment.sig>
More information about the Python-Dev
mailing list