Donald Stufft added the comment: > I don't consider monkey patching a proper way to configure a Python > installation.
The point is that that TLS validation on/off isn't conceptually a Python level configuration option, that's going to be a per application configuration option. The monkeypatching is simply an escape hatch to give people time to update their applications (or pressure whoever wrote the application) to support the configuration option that really belongs at the application level. It *should* feel improper because the entire concept of a Python level on/off switch isn't proper and making it feel more proper by adding an official API or config file for doing it is only giving footguns out to people. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue23857> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
