eGenix pyOpenSSL Distribution GA

eGenix pyOpenSSL Distribution GA

eGenix is pleased to announce the eGenix pyOpenSSL Distribution for Python 2.4 - 2.7, with support for Windows, Linux and Mac OS X.


The pyOpenSSL Distribution includes everything you need to get started with SSL in Python. It comes with an easy to use installer that includes the most recent OpenSSL library versions in pre-compiled
form, making your application independent of OS provided OpenSSL libraries:

>>>   eGenix pyOpenSSL Distribution Page

pyOpenSSL is an open-source Python add-on that allows writing SSL-aware networking applications as as certificate managment tools. It uses the OpenSSL library as performant and robust SSL engine.

OpenSSL is an open-source implementation of the SSL/TLS protocol.


This new release of the pyOpenSSL Distribution updates the included pyOpenSSL and OpenSSL versions:

New in the eGenix pyOpenSSL Distribution

  • Updated pyOpenSSL to the upstream trunk revision 171 (pyOpenSSL version 0.13.1+).
  • Added work-around for compiling pyOpenSSL trunk revision 171 on Windows with OpenSSL 1.0.0 and later.
  • Included support for TLS 1.1 and 1.2 in pyOpenSSL (rev 171). Please see the TLS support section in the documentation for details.
  • Added SSL.OP_NO_COMPRESSION and SSL.OP_SINGLE_ECDH_USE context options to be able to address the CRIME attack and allow for more secure elliptic curve Diffie-Hellman key exchange setups.
  • Added HTML Sphinx documentation from the pyOpenSSL trunk version to the package. An online version is available from our website.
  • Updated the included CA bundles to the latest Mozilla 2014-01-28 version.
  • Included ca-bundle*.crt files now have the same modification date as the Mozilla certdata.txt file from which they were generated.
  • Restored compatibility of the ca_bundle module with Python 2.4.
  • Enhanced the included example to show case OpenSSL best practices:
    • server name parsing (RFC 2818 support will follow in one of the next releases)
    • SNI (support for TLS extension to support multiple SSL sites on a single host)
    • setup secure default SSL options
    • setup secure default SSL cipher suite
    • use TLS 1.0 - 1.2 only
    • disable SSL compression negotiation (prevent CRIME attack)

New in OpenSSL

As always, we provide binaries that include both pyOpenSSL and the necessary OpenSSL libraries/binaries for all supported platforms: Windows x86 and x64, Linux x86 and x64, Mac OS X PPC, x86 and x64.

We have also added .egg-file distribution versions of our pyOpenSSL Distribution for Windows, Linux and Mac OS X to the available download options. These make setups using e.g. zc.buildout and other egg-file based installers a lot easier.


Please visit the eGenix pyOpenSSL Distribution page for downloads, instructions on installation and documentation of the package.


Before installing this version of pyOpenSSL, please make sure that you uninstall any previously installed pyOpenSSL version. Otherwise, you could end up not using the included OpenSSL libs.

More Information

For more information on the eGenix pyOpenSSL Distribution, licensing and download instructions, please write to

Enjoy !

Marc-Andre Lemburg,

Published: 2014-01-28