Issue #1373 new

linkcheck does not validate TLS

Alex Gaynor
created an issue

Specifically: it does not check when it loads a page that the certificate the server presented is a) signed by any recognized signing authority, and b) has a hostname matching the actual hostname. The result is a) linkcheck is open to MITM, b) it doesn't really emulate what a browser does, a real user clicking the link in a modern browser will get an error page.

Comments (5)

  1. Georg Brandl repo owner

    I have no objections to use requests (which I assume does TRT on 2.x) when available.

    But in general a) is not a concern at all for this application, and b) is a minor annoyance (and usually nothing the documentation author could fix).

  2. Log in to comment