diff options
| author | Benjamin Peterson <benjamin@python.org> | 2015-03-16 17:43:38 (GMT) |
|---|---|---|
| committer | Benjamin Peterson <benjamin@python.org> | 2015-03-16 17:43:38 (GMT) |
| commit | 59c4eb71f23daa1a96650963eb17f2c8521cbe18 (patch) | |
| tree | ba40da0009aa21ade1f9e882f843d338d05c3613 /Doc | |
| parent | 05d54730daf67f97577d78572cab0ccdee6a42b4 (diff) | |
| download | cpython-59c4eb71f23daa1a96650963eb17f2c8521cbe18.zip cpython-59c4eb71f23daa1a96650963eb17f2c8521cbe18.tar.gz cpython-59c4eb71f23daa1a96650963eb17f2c8521cbe18.tar.bz2 | |
versionchanged for rc4 removal (closes #23679)
Diffstat (limited to 'Doc')
| -rw-r--r-- | Doc/library/ssl.rst | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/Doc/library/ssl.rst b/Doc/library/ssl.rst index e37357f..a1162f4 100644 --- a/Doc/library/ssl.rst +++ b/Doc/library/ssl.rst @@ -245,8 +245,8 @@ purposes. :const:`None`, this function can choose to trust the system's default CA certificates instead. - The settings in Python 3.4 are: :data:`PROTOCOL_SSLv23`, :data:`OP_NO_SSLv2`, - and :data:`OP_NO_SSLv3` with high encryption cipher suites without RC4 and + The settings are: :data:`PROTOCOL_SSLv23`, :data:`OP_NO_SSLv2`, and + :data:`OP_NO_SSLv3` with high encryption cipher suites without RC4 and without unauthenticated cipher suites. Passing :data:`~Purpose.SERVER_AUTH` as *purpose* sets :data:`~SSLContext.verify_mode` to :data:`CERT_REQUIRED` and either loads CA certificates (when at least one of *cafile*, *capath* or @@ -276,6 +276,10 @@ purposes. .. versionadded:: 3.4 + .. versionchanged:: 3.4.4 + + RC4 was dropped from the default cipher string. + Random generation ^^^^^^^^^^^^^^^^^ |