Add clarity to the warning on certificate verification in urllib.

author Senthil Kumaran <senthil@uthcode.com>

Sat, 28 Jan 2017 07:05:34 +0000 (23:05 -0800)

committer Senthil Kumaran <senthil@uthcode.com>

Sat, 28 Jan 2017 07:05:34 +0000 (23:05 -0800)
author Senthil Kumaran <senthil@uthcode.com>
Sat, 28 Jan 2017 07:05:34 +0000 (23:05 -0800)
committer Senthil Kumaran <senthil@uthcode.com>
Sat, 28 Jan 2017 07:05:34 +0000 (23:05 -0800)
diff --git a/Doc/library/urllib.rst b/Doc/library/urllib.rst

index 439482aeb988a3945201a4f15da1ea9634263b12..2a5ea717f0614b5ffcf1969cf0ad1c8197edd36e 100644 (file)
--- a/Doc/library/urllib.rst
+++ b/Doc/library/urllib.rst
@@ -26,11 +26,16 @@ reading, and no seek operations are available.
  
  .. seealso::
  
-    The `Requests package <http://requests.readthedocs.org/>`_
+    The `Requests package <http://docs.python-requests.org/>`_
      is recommended for a higher-level HTTP client interface.
  
-.. warning:: When opening HTTPS URLs, it does not attempt to validate the
-   server certificate.  Use at your own risk!
+.. versionchanged:: 2.7.9
+
+    For HTTPS URIs, :mod:`urllib` performs all the neccessary certificate and hostname checks by default.
+
+.. warning::
+
+    For Python versions earlier than 2.7.9, urllib does not attempt to validate the server certificates of HTTPS URIs. Use at your own risk!
  
  
  High-level interface
@@ -142,7 +147,7 @@ High-level interface
        :envvar:`no_proxy` environment variable.
  
     .. versionchanged:: 2.7.9
-      The *context* parameter was added.
+      The *context* parameter was added. All the neccessary certificate and hostname checks are done by default.
  
     .. deprecated:: 2.6
        The :func:`urlopen` function has been removed in Python 3 in favor
author	Senthil Kumaran <senthil@uthcode.com>
	Sat, 28 Jan 2017 07:05:34 +0000 (23:05 -0800)
committer	Senthil Kumaran <senthil@uthcode.com>
	Sat, 28 Jan 2017 07:05:34 +0000 (23:05 -0800)