This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author pitrou
Recipients asdfasdfasdfasdfasdfasdfasdf, eric.araujo, loewis, pitrou
Date 2010-11-21.13:17:18
SpamBayes Score 4.3957857e-06
Marked as misclassified No
Message-id <1290345435.3620.2.camel@localhost.localdomain>
In-reply-to <AANLkTi=X7kP_mk=zudwwcKeDeW_Q8t4fEU3W+-iXooop@mail.gmail.com>
Content 
> > Having applications/scripts explicitly opt-in to a default CA
> > certificate list would be an option (then making those applications
> > break in installations where the default CA list is empty).
> 
> "Errors should never pass silently."
> IMHO it is an error not to check by default.
> No it wouldn't break anything that shouldn't break.
> Users can then pass in None for the capath (as an example).

Well, can you stop insisting? It is probably the third time that we
explain you we can't break compatibility on this.

(also, many SSL sites are not covered by "default" CA certificates
shipped by most vendors, e.g. self-signed certificates or certificates
signed by CAcert)
History
Date User Action Args
2010-11-21 13:17:20pitrousetrecipients: + pitrou, loewis, eric.araujo, asdfasdfasdfasdfasdfasdfasdf
2010-11-21 13:17:18pitroulinkissue10441 messages
2010-11-21 13:17:18pitroucreate