note xmlrpclib doesn't verify certs (yet)

commit: 078ece20e448cf9b2687c5a1c4925e7efe3c42a2 [log] [tgz]
author: Benjamin Peterson <benjamin@python.org> Mon Oct 13 11:53:54 2014 -0400
committer: Benjamin Peterson <benjamin@python.org> Mon Oct 13 11:53:54 2014 -0400
tree: 1a99db5b8d73764b5c4afbf068b2b28d83cb09ea
parent: fbddffad2f860b46dba1ab44fe5a5dddbd294f37 [diff]
diff --git a/Doc/library/xmlrpclib.rst b/Doc/library/xmlrpclib.rst
index 0e9ff4b..766a796 100644
--- a/Doc/library/xmlrpclib.rst
+++ b/Doc/library/xmlrpclib.rst

@@ -34,6 +34,11 @@
    constructed data.  If you need to parse untrusted or unauthenticated data see
    :ref:`xml-vulnerabilities`.
 
+.. warning::
+
+   In the case of https URIS, :mod:`xmlrpclib` does not do any verification of
+   the server's certificate.
+
 
 .. class:: ServerProxy(uri[, transport[, encoding[, verbose[,  allow_none[, use_datetime]]]]])
commit	078ece20e448cf9b2687c5a1c4925e7efe3c42a2	[log] [tgz]
author	Benjamin Peterson <benjamin@python.org>	Mon Oct 13 11:53:54 2014 -0400
committer	Benjamin Peterson <benjamin@python.org>	Mon Oct 13 11:53:54 2014 -0400
tree	1a99db5b8d73764b5c4afbf068b2b28d83cb09ea
parent	fbddffad2f860b46dba1ab44fe5a5dddbd294f37 [diff]