This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author pitrou
Recipients asdfasdfasdfasdfasdfasdfasdf, eric.araujo, loewis, pitrou
Date 2010-11-18.16:48:46
SpamBayes Score 2.3925084e-11
Marked as misclassified No
Message-id <1290098923.3522.5.camel@localhost.localdomain>
In-reply-to <AANLkTikrc5FVsJAGMUiLpJSoYRVEY8xtJNNGYVXFg1Qw@mail.gmail.com>
Content 
> > This may not be satisfying to users. For example, our Windows
> > distribution doesn't ship with any certicates (AFAIK); I have no
> > clue where exactly OpenSSL would be looking for them, either.
> > People worried about this problem probably would want a way to
> > fill the list of trusted CA certificates.

Right, this is just a helper in case OpenSSL is configured correctly by
the OS vendor (the OpenSSL packaged by Linux distros usually is).

> Erh, those people can already do this, but the problem is by default
> none are selected.
> IMHO something is probably better than nothing in this case(by default).

We can't change anything *by default* since it would break
compatibility. We can just provide helpers and arguments to make it easy
to switch to a more "secure" behaviour (for some meaning of secure).
History
Date User Action Args
2010-11-18 16:48:47pitrousetrecipients: + pitrou, loewis, eric.araujo, asdfasdfasdfasdfasdfasdfasdf
2010-11-18 16:48:46pitroulinkissue10441 messages
2010-11-18 16:48:46pitroucreate