This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author christian.heimes
Recipients christian.heimes, georg.brandl, giampaolo.rodola, janssen, larry, pitrou
Date 2013-11-25.09:48:55
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1385372937.94.0.16541820117.issue19509@psf.upfronthosting.co.za>
In-reply-to
Content
The patch implements check_hostname in order to match SSL certs with the peer's hostname in ftp, imap, nntp, pop and smtp library. So far the patch needs more tests and doc updates.

I consider the new feature a security fix. Right now everybody with any valid TLS/SSL certificate can claim that its certificate is valid for 'smtp.google.com'.
History
Date User Action Args
2013-11-25 09:48:58christian.heimessetrecipients: + christian.heimes, georg.brandl, janssen, pitrou, larry, giampaolo.rodola
2013-11-25 09:48:57christian.heimessetmessageid: <1385372937.94.0.16541820117.issue19509@psf.upfronthosting.co.za>
2013-11-25 09:48:57christian.heimeslinkissue19509 messages
2013-11-25 09:48:57christian.heimescreate