Message 121894 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	loewis
Recipients	asdfasdfasdfasdfasdfasdfasdf, eric.araujo, loewis, pitrou
Date	2010-11-21.09:50:00
SpamBayes Score	0.0021943457
Marked as misclassified	No
Message-id	<4CE8EB47.6050009@v.loewis.de>
In-reply-to	<AANLkTi=1w_Q2536q8_zkPdU9zvKA=SciO28_fooMupyW@mail.gmail.com>

Content
> So for python3 is it possible to make attempting to use capath(some > common ones OR the openssl location capath if this is ok for use) the > default(with failure to find a valid capath result in an exception > being raised) ? The default? That would be an incompatible change, and cause many complaints. So I'm very skeptical that this can be done. Having applications/scripts explicitly opt-in to a default CA certificate list would be an option (then making those applications break in installations where the default CA list is empty).

> So for python3 is it possible to make attempting to use capath(some
> common ones OR the openssl location capath if this is ok for use) the
> default(with failure to find a valid capath result in an exception
> being raised) ?

The default? That would be an incompatible change, and cause many
complaints. So I'm very skeptical that this can be done.

Having applications/scripts explicitly opt-in to a default CA
certificate list would be an option (then making those applications
break in installations where the default CA list is empty).

History
Date	User	Action	Args
2010-11-21 09:50:03	loewis	set	recipients: + loewis, pitrou, eric.araujo, asdfasdfasdfasdfasdfasdfasdf
2010-11-21 09:50:00	loewis	link	issue10441 messages
2010-11-21 09:50:00	loewis	create