From f5fde98ab6925ed8f61352876fb4f6f5e55754a2 Mon Sep 17 00:00:00 2001
From: Alex Gaynor <alex.gaynor@gmail.com>
Date: Sat, 12 Dec 2015 14:38:21 -0500
Subject: [PATCH] Fixed an inaccurate comment

While it's true that older Pythons do not do (critical) TLS validation by default, that's not what this warning is about.
---
 acme/acme/client.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/acme/acme/client.py b/acme/acme/client.py
index 08d476783..776ddb38a 100644
--- a/acme/acme/client.py
+++ b/acme/acme/client.py
@@ -20,7 +20,9 @@ from acme import messages
 
 logger = logging.getLogger(__name__)
 
-# Python does not validate certificates by default before version 2.7.9
+# Prior to Python 2.7.9 the stdlib SSL module did not allow a user to configure
+# many important security related options. On these platforms we use PyOpenSSL
+# for SSL, which does allow these options to be configured.
 # https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning
 if sys.version_info < (2, 7, 9):  # pragma: no cover
     requests.packages.urllib3.contrib.pyopenssl.inject_into_urllib3()