This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author ncoghlan
Recipients alex, larry, ncoghlan
Date 2014-09-15.12:34:29
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
Attached minimal patch updates http.client.HTTPSConnection to validate certs by default and adjusts test.test_httplib accordingly.

It doesn't currently include any docs changes, or changes to urllib.

The process wide "revert to the old behaviour" hook is to monkeypatch the ssl module:

    ssl._create_default_https_context = ssl._create_unverified_context

To monkeypatch the stdlib to validate *everything* (this one isn't new, just noting it for the record):

    ssl._create_stdlib_context = ssl.create_default_context
Date User Action Args
2014-09-15 12:34:30ncoghlansetrecipients: + ncoghlan, larry, alex
2014-09-15 12:34:29ncoghlansetmessageid: <>
2014-09-15 12:34:29ncoghlanlinkissue22417 messages
2014-09-15 12:34:29ncoghlancreate