Message 214173 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	ncoghlan
Recipients	alex, christian.heimes, docs@python, giampaolo.rodola, janssen, ncoghlan, pitrou
Date	2014-03-20.04:45:39
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1395290739.65.0.71721715189.issue20988@psf.upfronthosting.co.za>
In-reply-to

Content
The ssl docs currently have a security warning at the top directing users to the Security Considerations section at http://docs.python.org/3/library/ssl#ssl-security That section currently dives directly into the technical details of choosing suitable SSL settings, and doesn't reference back to the new http://docs.python.org/3/library/ssl#ssl.create_default_context helper function. I believe this section should start with an example of using the create_default_context() to create an SSL wrapped socket with reasonable settings, and only then continue on with the technical details.

The ssl docs currently have a security warning at the top directing users to the Security Considerations section at http://docs.python.org/3/library/ssl#ssl-security

That section currently dives directly into the technical details of choosing suitable SSL settings, and doesn't reference back to the new http://docs.python.org/3/library/ssl#ssl.create_default_context helper function.

I believe this section should *start* with an example of using the create_default_context() to create an SSL wrapped socket with reasonable settings, and only *then* continue on with the technical details.

History
Date	User	Action	Args
2014-03-20 04:45:39	ncoghlan	set	recipients: + ncoghlan, janssen, pitrou, giampaolo.rodola, christian.heimes, alex, docs@python
2014-03-20 04:45:39	ncoghlan	set	messageid: <1395290739.65.0.71721715189.issue20988@psf.upfronthosting.co.za>
2014-03-20 04:45:39	ncoghlan	link	issue20988 messages
2014-03-20 04:45:39	ncoghlan	create