this post was submitted on 14 Nov 2023
6 points (100.0% liked)

Security Operations

578 readers
1 users here now

A place for all things Cyber Security, from questions, rants, and stories, to the latest attacks, vulnerabilities, and zero days.

founded 2 years ago
MODERATORS
L3s
6
Nothing new, still broken, insecure by default since then: Python's e-mail libraries and certificate verification and how it affected open source projects (www.pentagrid.ch)
submitted 1 year ago by L4s to c/secops
0 comments fedilink hide all child comments
 

Nothing new, still broken, insecure by default since then: Python's e-mail libraries and certificate verification and how it affected open source projects::Python’s e-mail libraries smtplib, imaplib, and poplib do not verify server certificates unless a proper SSL context is passed to the API. This leads to security problems.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here