**virtualice** @CobaltVelvet · Apr 12, 2017, 13:21

**virtualice** @CobaltVelvet · Apr 12, 2017, 13:21

virtualice @CobaltVelvet

Currently using something looking like that: http://stackoverflow.com/questions/29995133/python-requests-use-navigate-site-by-servers-ip

Of course that's not enough for HTTPS, it's even weird it worked until now.
Any idea on how to make it send the correct TLS SNI?

**SysAdmin1138** @sysadmin1138 · Apr 12, 2017, 14:10

**SysAdmin1138** @sysadmin1138 · Apr 12, 2017, 14:10

@CobaltVelvet Ahah! Python does have a libcurl interface.

curl.setopt(pycurl.RESOLVE, "hostname:443:ipaddress")

That should get it to do the right SNI handshake, since its editing the DNS resolver path (https://curl.haxx.se/libcurl/c/CURLOPT_RESOLVE.html)

**virtualice** @CobaltVelvet · Apr 12, 2017, 14:11

**virtualice** @CobaltVelvet · Apr 12, 2017, 14:11

@sysadmin1138 but it's more deps, I'm pretty sure it's doable with httplib, just painful

**cdetar** @cdetar · 2017-04-12T14:19:08Z

cdetar @cdetar

@CobaltVelvet @sysadmin1138 Is it possible in the setup to modify /etc/hosts on the machine that's making requests? That would pre-empt any local DNS lookups and python-requests would send the correct SNI.

Apr 12, 2017, 14:19 · Web · 0 · 0

**virtualice** @CobaltVelvet · Apr 12, 2017, 14:20

**virtualice** @CobaltVelvet · Apr 12, 2017, 14:20

@cdetar @sysadmin1138 no that's too hacky for it, I'd prefer to keep it contained inside the process.