View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0008097||Kali Linux||Kali Package Improvement||public||2022-12-12 16:55||2023-02-09 08:51|
|Fixed in Version||2023.1|
|Summary||0008097: Make Python use openssl's default SSL cipher settings|
Since Python 3.10, the security of the default SSL cipher settings have been
This causes issues, for example, with Certipy and Impacket, two very popular
The problem is exacerbated by the fact that changes to the Python library
Python does not respect the cipher settings defined in /etc/ssl/openssl.cnf
If we set the following configure option to
At the same time, regular users who don't mess with config files should not
Please let me know whether you think that this is a sensible approach and
|Steps To Reproduce|
Execute the following commands on an up-to-date Kali system:
$ python3.9 -c 'import requests; requests.get("https://dh1024.badssl.com/")'
Hello, and thank you for the suggestion!
This has been fixed in Python 3.11.2-2 which landed in Debian recently and will reach kali-rolling in a few days.
|2022-12-12 16:55||adrian.vollmer||New Issue|
|2022-12-21 12:42||daniruiz||Note Added: 0017270|
|2023-02-09 08:51||rhertzog||Assigned To||=> rhertzog|
|2023-02-09 08:51||rhertzog||Status||new => resolved|
|2023-02-09 08:51||rhertzog||Resolution||open => fixed|
|2023-02-09 08:51||rhertzog||Fixed in Version||=> 2023.1|
|2023-02-09 08:51||rhertzog||Note Added: 0017487|