Python Upgrade - Default Image #125
Comments
transhapHigsn
pushed a commit
to DiligenceVault/st2-docker
that referenced
this issue
Jun 8, 2021
You can find the old deprecated version in `DEPRECATED/all-in-one` branch archive: https://github.com/StackStorm/st2-docker/tree/DEPRECATED/all-in-one Closes StackStorm#22, closes StackStorm#23, closes StackStorm#26, closes StackStorm#29, closes StackStorm#34, closes StackStorm#41, closes StackStorm#43, closes StackStorm#92, closes StackStorm#112, closes StackStorm#117, closes StackStorm#125, closes StackStorm#133, closes StackStorm#141, closes StackStorm#145, closes StackStorm#151, closes StackStorm#163, closes StackStorm#187, closes StackStorm#188, closes StackStorm#189, closes StackStorm#190 Closes StackStorm#162, closes StackStorm#138, closes StackStorm#108, closes StackStorm#102, closes StackStorm#65
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The default image comes with Python2.7.6, which has known bugs validating internal root CA files with SSL requests.
From: https://docs.stackstorm.com/packs.html#installing-a-pack
"If you are using a Python version < 2.7.9, then a MiTM proxy won’t work. This is the case with Ubuntu 14.04. See CVE-2014-9365 for more info. You will need to use CONNECT SSL tunnel."
All of our internal tooling uses Root CA's that are issued internally, which is breaking this for us. We also have MiTM when trying to download packs.
Would it be possible to upgrade to python 2.7.9 so we can embed our certificates into the cert files Python looks for?
The text was updated successfully, but these errors were encountered: