[Python-Dev] PEP 476: Enabling certificate validation by default!

Paul Moore p.f.moore at gmail.com
Sun Aug 31 21:12:28 CEST 2014

On 31 August 2014 19:37, Antoine Pitrou <antoine at python.org> wrote:
> Well, it's certainly pip's responsibility more than Python's. What would
> Python do? Provide a setting that would blindly add a cert for all uses of
> httplib?

That's more or less my point, pip doesn't have that much better idea
than Python. I was talking about putting the cert in my local cert
store, so that *I* can decide, and applications don't need to take
special care to allow me to handle this case. You said that doing so
was bad, but I don't see why. It seems to me that you're saying that I
should raise a feature request for pip instead, which seems
unreasonable. Am I missing something?


More information about the Python-Dev mailing list