Reputation: 802
How to ignore SSL Certificate Name Mismatch in Python (xmlrpc)
Whilst trying to communicate with a server by using Python's XML-RPC library:
import xmlrpc.client
url = 'https://12345/'
api = xmlrpc.client.ServerProxy(url)
print(api.system.listMethods())
I am getting this error:
ssl.py in match_hostname ssl.CertificateError: hostname '12345' doesn't match '*.hostname.com'
Obviously, I can alter the source of ssl.py to ignore this, but is there a better way like a parameter I can set etc?
Upvotes: 3
Views: 2900
Answers (2)
Reputation: 51
A current version of python has an additional context parameter that can use a custom SSL context:
import xmlrpc.client
import ssl
url = 'https://12345/'
api = xmlrpc.client.ServerProxy(url,context=ssl._create_unverified_context())
print(api.system.listMethods())
Upvotes: 5
Reputation: 802
There is no such setting in xmlrpc library for obvious reasons. Thus the only way to accomplish this is to remove validation from ssl.py.
Note: I was writing a real world system that would communicate with an external provider via HTTPS. But before we were able to put it live we had to test with their dev-server, which had different hostname hence the certificate error. So there was no security risk as only dev-server credentials were used and some dummy data.
Upvotes: 2
Related Questions
- SSL cert issue with Python Requests
- XMLSEC error: "failed to load certificate"
- Python SSL certificate check hostname according to common name
- SSL issue with XMLRPC using Python and Wordpress
- SSL Certificate error while doing a request via python
- URL request failing with in Python - cannot find SSL certificate
- How to ignore certificate in python 2.6?
- SSL Error On Python Request
- Python Requests untrusted certificate
- XMLRPC server over HTTPS in Python 3