[Python-Dev] PEP 466: Proposed policy change for handling network security enhancements

Christian Heimes christian at python.org
Sun Mar 23 10:48:33 CET 2014


On 23.03.2014 02:33, Brett Cannon wrote:
> Now I have been reading this thread on my phone and I only have cursory
> understanding of what failure ssl has had as of late, so this might be
> stupid, but what if in Python 3.5 we made it so people passed in an
> explicit SSL object into the relevant APIs and threw an exception if one
> wasn't provided when trying to access something requiring SSL? Then the
> ssl module would start existing on PyPI to make sure it can evolve
> faster than every 18 months?

I want to deprecate all SSL-related arguments except for the context
argument. Several modules still except key and cert parameters. Do you
want to make the context parameter a required parameter?



More information about the Python-Dev mailing list