[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Python ssl handling could be better...

To: Marsh Ray <marsh@xxxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Python ssl handling could be better...
From: dave b <db.pub.mail@xxxxxxxxx>
Date: Sat, 5 Mar 2011 14:35:57 +1100

Marsh, the thing is that the ssl module was only introduced in python 2.6. [0]
There has been other options for a _long_ time. As an example, (for
https traffic) pycurl. So python developers can and do use public wifi
without problems. Only the ones who do not read warning messages are
at risk.  Of course a fair amount of code would have been written
before the warnings were added...



[0] http://docs.python.org/whatsnew/2.6.html#improved-ssl-support

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Python ssl handling could be better...
  - From: Marsh Ray

References:
- Re: [Full-disclosure] Python ssl handling could be better...
  - From: Michael Krymson
- Re: [Full-disclosure] Python ssl handling could be better...
  - From: bk
- Re: [Full-disclosure] Python ssl handling could be better...
  - From: Marsh Ray

Prev by Date: [Full-disclosure] [ MDVSA-2011:041 ] firefox
Next by Date: [Full-disclosure] [SECURITY] [DSA 2184-1] isc-dhcp security update
Previous by thread: Re: [Full-disclosure] Python ssl handling could be better...
Next by thread: Re: [Full-disclosure] Python ssl handling could be better...
Index(es):
- Date
- Thread