Message 137806 - Python tracker

➜

This issue tracker has been migrated to GitHub , and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

In-reply-to
Author	pitrou
Recipients	Arfrever, alexis, barry, eric.araujo, fdrake, jwilk, loewis, pitrou, skrah, tarek, techtonik
Date	2011年06月07日.11:16:05
SpamBayes Score	0.00020796659
Marked as misclassified	No
Message-id	<1307445365.99.0.689464535688.issue12226@psf.upfronthosting.co.za>

Content
> If you make an HTTPS connection without checking the certificate, what > security does it add? Well, it does prevent the most trivial class of attacks (sniffing). That said, Python has support for certificate checking, especially in 3.2+, so you should use that. You could e.g. bundle the CACert root certificate with the distribution.

Content

> If you make an HTTPS connection without checking the certificate, what 
> security does it add?
Well, it does prevent the most trivial class of attacks (sniffing).
That said, Python has support for certificate checking, especially in 3.2+, so you should use that. You could e.g. bundle the CACert root certificate with the distribution.

History
Date	User	Action	Args
2011年06月07日 11:16:06	pitrou	set	recipients: + pitrou, loewis, fdrake, barry, techtonik, tarek, jwilk, eric.araujo, Arfrever, skrah, alexis
2011年06月07日 11:16:05	pitrou	set	messageid: <1307445365.99.0.689464535688.issue12226@psf.upfronthosting.co.za>
2011年06月07日 11:16:05	pitrou	link	issue12226 messages
2011年06月07日 11:16:05	pitrou	create

homepage