Message 214310 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	pitrou
Recipients	Arfrever, alex, benjamin.peterson, christian.heimes, dstufft, ezio.melotti, lemburg, ncoghlan, pitrou, r.david.murray, vstinner
Date	2014-03-20.23:40:30
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1395358828.2310.9.camel@fsol>
In-reply-to	<1395358728.76.0.429058404543.issue20995@psf.upfronthosting.co.za>

Content
> The Python ssl module is used for servers and clients. Ideally servers will > have prefer server ciphers on, but that doesn't always happen and providing > a modern level of security for end users is preferable. We should have specific defaults for servers in create_default_context(). > The > danger for breakage here is tiny, miniscule, almost non existent and the > failure case is obvious and easy to fix. Again: the point is maintenance later, not breakage now.

> The Python ssl module is used for servers and clients. Ideally servers will
> have prefer server ciphers on, but that doesn't always happen and providing
> a modern level of security for end users is preferable. 

We should have specific defaults for servers in
create_default_context().

> The
> danger for breakage here is *tiny*, *miniscule*, almost non existent and the
> failure case is obvious and easy to fix.

Again: the point is maintenance later, not breakage now.

History
Date	User	Action	Args
2014-03-20 23:40:30	pitrou	set	recipients: + pitrou, lemburg, ncoghlan, vstinner, christian.heimes, benjamin.peterson, ezio.melotti, Arfrever, alex, r.david.murray, dstufft
2014-03-20 23:40:30	pitrou	link	issue20995 messages
2014-03-20 23:40:30	pitrou	create