Ronald Oussoren added the comment: The fork of OpenSSL that Apple ships also looks at the CA list in the Keychain. IIRC that cannot be disabled.
BTW. Annoyingly this fork uses a private API to access the keychain, which means we couldn't optionally use this behavior when not using Apple's binaries. -- On the road, hence brief. Op 17 jul. 2015 om 17:55 heeft Antoine Pitrou <rep...@bugs.python.org> het volgende geschreven: > > Antoine Pitrou added the comment: > > Do we know exactly why OS X's OpenSSL accepts it? > > ---------- > nosy: +ned.deily, pitrou, ronaldoussoren > > _______________________________________ > Python tracker <rep...@bugs.python.org> > <http://bugs.python.org/issue24646> > _______________________________________ ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue24646> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
