ssl server: how to disable client cert verfication?
Christian Heimes
christian at python.org
Fri Feb 4 13:59:00 EST 2022
On 03/02/2022 19.57, Grant Edwards wrote:
> I've got a small ssl server app. I want to require a certificate from
> the client, so I'm using a context with
>
> context.verify_mode = ssl.CERT_REQUIRED
>
> But, I want all certificates accepted. How do I disable client
> certificate verification?
You can't. Python's ssl module does not expose the necessary feature to
override the verification callback SSL_CTX_set_verify(). PyOpenSSL lets
you set a callback and ignore any and all errors.
Christian
More information about the Python-list
mailing list