[utils] Do not make an exception for SSLv3

SSLv3 is terminally vulnerable to POODLE; web browsers are currently deprecating/removing it. Closes #4459, fixes #4294
10 years ago · 2128b696b8
parent a23669220a
commit 2128b696b8
1 changed files with 0 additions and 1 deletions
--- a/youtube_dl/utils.py
+++ b/youtube_dl/utils.py
@ -390,7 +390,6 @@ def formatSeconds(secs):
 def make_HTTPS_handler(opts_no_check_certificate, **kwargs):
    if hasattr(ssl, 'create_default_context'):  # Python >= 3.4 or 2.7.9
        context = ssl.create_default_context(ssl.Purpose.CLIENT_AUTH)
-        context.options &= ~ssl.OP_NO_SSLv3  # Allow older, not-as-secure SSLv3
        if opts_no_check_certificate:
            context.verify_mode = ssl.CERT_NONE
        try: