Message 231133 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	lemburg
Recipients	lemburg
Date	2014-11-13.18:59:18
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1415905159.27.0.459058409364.issue22866@psf.upfronthosting.co.za>
In-reply-to

Content
With the backport of the Python 3 ssl module, the default context options of the ssl module were changed. While this provides better security in many cases, it also causes breakage with servers or clients which do not support TLSv1 and later. The ssl module should provide a way to globally set the default context options to work around this to allow e.g. removing the OP_NO_SSLv3 option in order to get things to work again without having to change the application using the ssl module.

With the backport of the Python 3 ssl module, the default context options of the ssl module were changed.

While this provides better security in many cases, it also causes breakage with servers or clients which do not support TLSv1 and later.

The ssl module should provide a way to globally set the default context options to work around this to allow e.g. removing the OP_NO_SSLv3 option in order to get things to work again without having to change the application using the ssl module.

History
Date	User	Action	Args
2014-11-13 18:59:19	lemburg	set	recipients: + lemburg
2014-11-13 18:59:19	lemburg	set	messageid: <1415905159.27.0.459058409364.issue22866@psf.upfronthosting.co.za>
2014-11-13 18:59:19	lemburg	link	issue22866 messages
2014-11-13 18:59:18	lemburg	create