Foundations of Python Network Programming

Chapter 6 ■ tLS/SSL 96 The certs directory also contains several certificates used in the network playground itself (see Chapter ...

Chapter 6 ■ tLS/SSL 97 $ openssl req -new -key http://www.key -config http://www.cnf -out http://www.csr Consult the Makefile if ...

Chapter 6 ■ tLS/SSL 98 There exist more complicated arrangements than a CA that directly signs certificates for server use. For ...

Chapter 6 ■ tLS/SSL 99 Python 3.4 Default Contexts Several open source implementations of TLS are available. The Python Standard ...

Chapter 6 ■ tLS/SSL 10 0 while True: data = ssl_sock.recv(1024) if not data: break print(repr(data)) def server(host, port, cert ...

Chapter 6 ■ tLS/SSL 101 out-of-date. But surely, they think, you will want your own servers to insist on modern and secure ciphe ...

Chapter 6 ■ tLS/SSL 102 To keep the code simple, neither the client nor the server in Listing 6-3 runs inside a loop. Instead, t ...

Chapter 6 ■ tLS/SSL 103 0x00e0: 5504 0a13 2045 7861 6d70 6c65 2043 4120 U....Example.CA. 0x00f0: 6672 6f6d 2041 7072 6573 7320 4 ...

Chapter 6 ■ tLS/SSL 10 4 • It is woefully permissive with respect to the weak ciphers that it will allow because of the promi ...

Chapter 6 ■ tLS/SSL 105 Note that although the ssl module’s default contexts do not require a PFS-capable cipher, you will proba ...

Chapter 6 ■ tLS/SSL 10 6 The problem with switching from the ssl module’s default contexts to hand-picked settings like this is ...

Chapter 6 ■ tLS/SSL 107 • ftplib: When you build an FTP_TLS object (see Chapter 17), you can use the constructor’s context ke ...

Chapter 6 ■ tLS/SSL 108 To make its reporting as complete as possible, the script in Listing 6-4 also attempts a bit of magic us ...

Chapter 6 ■ tLS/SSL 109 for category, count in sorted(context.cert_store_stats().items()): say('Certificates loaded of type {}'. ...

Chapter 6 ■ tLS/SSL 110 if name == 'main': parser = argparse.ArgumentParser(description='Protect a socket with TLS') parser.add_ ...

Chapter 6 ■ tLS/SSL 111 settings of a server that uses Python 3.4’s create_default_context() are stricter than the settings of a ...

Chapter 6 ■ tLS/SSL 112 But the behavior of the “safe” script changes considerably if you place it in the role of a client becau ...

Chapter 6 ■ tLS/SSL 113 The OpenSSL library will consider any of these combinations to be fair game under the setting set_ ciphe ...

115 Chapter 7 Server Architecture There are two challenges facing the author of a network service. The first is the core challen ...

Chapter 7 ■ Server arChiteCture 116 then the load balancer simply stops forwarding requests there until it comes back up, which ...