Advise developers on the dangers of disabling SSL/TLS verification

Open moggers87 opened this issue 11 years ago • 1 comments

The verify_requests option on the PyPump object should really only be used for debugging. We should warn developers against making this option available to end-users (fingerprint-pinning is a better option for users using self-signed certs).

I suggest we add something like this: sim city 2000 transport advisor

Unfortunately, we don't have a license to use that image ;)

Aug 22 '14 14:08 moggers87

Just to be clear: this is for the documentation.

Aug 23 '14 17:08 moggers87