Message 232486 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	lemburg
Recipients	alex, benjamin.peterson, lemburg, r.david.murray
Date	2014-12-11.20:24:10
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<5489FD63.9020803@egenix.com>
In-reply-to	<1418326933.41.0.0254259808675.issue22866@psf.upfronthosting.co.za>

Content
On 11.12.2014 20:42, Benjamin Peterson wrote: > > Usually you can pass your own context. Yes, in new code, but not in existing Python 2.7 code that wasn't written for the newly added SSL context feature. BTW: Having a way to change the SSL options globally would be useful for Python 3.x as well, since OpenSSL often adds new options and it's not unlikely we'll see an OP_NO_TLSv1 option soon, given its age and similarity to SSLv3... https://www.imperialviolet.org/2014/12/08/poodleagain.html (the poodle strikes back ;-))

On 11.12.2014 20:42, Benjamin Peterson wrote:
> 
> Usually you can pass your own context.

Yes, in new code, but not in existing Python 2.7 code that wasn't
written for the newly added SSL context feature.

BTW: Having a way to change the SSL options globally would be useful
for Python 3.x as well, since OpenSSL often adds new options and
it's not unlikely we'll see an OP_NO_TLSv1 option soon, given its
age and similarity to SSLv3...
https://www.imperialviolet.org/2014/12/08/poodleagain.html
(the poodle strikes back ;-))

History
Date	User	Action	Args
2014-12-11 20:24:10	lemburg	set	recipients: + lemburg, benjamin.peterson, alex, r.david.murray
2014-12-11 20:24:10	lemburg	link	issue22866 messages
2014-12-11 20:24:10	lemburg	create