Message 272232 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	j1m
Recipients	gvanrossum, j1m, python-dev, vstinner, yselivanov
Date	2016-08-09.10:56:38
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1470740198.54.0.0423427278536.issue27392@psf.upfronthosting.co.za>
In-reply-to

Content
WRT boolean for SSL, I think it's very common for clients to verify server certificates, but relatively uncommon for servers to require client certificates. The impression I have from reading docs and stack overflow posts that the most common use case for the SSL module is connection to HTTPS sites. For this use case, using a default context makes a lot of sense. It seems extremely unlikely to me for a server to use a default context. But I'm not an SSL expert.

WRT boolean for SSL, I think it's very common for clients to verify server certificates, but relatively uncommon for servers to require client certificates.  The impression I have from reading docs and stack overflow posts that the most common use case for the SSL module is connection to HTTPS sites. For this use case, using a default context makes a lot of sense.

It seems extremely unlikely to me for a server to use a default context.

But I'm not an SSL expert.

History
Date	User	Action	Args
2016-08-09 10:56:38	j1m	set	recipients: + j1m, gvanrossum, vstinner, python-dev, yselivanov
2016-08-09 10:56:38	j1m	set	messageid: <1470740198.54.0.0423427278536.issue27392@psf.upfronthosting.co.za>
2016-08-09 10:56:38	j1m	link	issue27392 messages
2016-08-09 10:56:38	j1m	create