Antoine Pitrou added the comment: > OpenSSL generally doesn't have bad options disabled until they are years old. > OpenSSL takes the stance that it's up to the consumers of the OpenSSL API to > properly configure themselves.
The point is, if they start exposing it, we can enable it ourselves. > I'm not 100% sure but I don't believe Python has such a dance so > TLS_FALLBACK_SCSV does nothing for us. Well, the ssl module can also be used in server mode. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue22638> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com