Antoine Pitrou <pit...@free.fr> added the comment: > Are you referring to > http://code.python.org/hg/branches/py3k/rev/86f97255bfc8 > > where there is now > " > 2.29 + .. warning:: > 2.30 + If neither *cafile* nor *capath* is specified, an HTTPS > request > 2.31 + will not do any verification of the server's certificate. > " > This doesnt' by default check the certificate does it ? > IMHO it should use a sane system capath by default and do the checking.
I'm afraid Python has no business validating and distributing CA certificates. You have to use what is provided by your system libraries, if possible, and otherwise bundle your own. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue10441> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com