Message 137638 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	eric.araujo
Recipients	Arfrever, alexis, barry, eric.araujo, fdrake, jwilk, loewis, skrah, tarek, techtonik
Date	2011-06-04.14:33:46
SpamBayes Score	0.0024594744
Marked as misclassified	No
Message-id	<1307198026.95.0.503396895817.issue12226@psf.upfronthosting.co.za>
In-reply-to

Content
> I think there should be a warning that the connection is > unauthenticated (i.e. not secure). Users tend to be upset if they see > 'https' and later find out that no certificates were verified. Thanks Stephan, that was on my mind but I forgot it. I’m -1 on using https if no validation is performed. > I believe that's a very personal judgement. Not really; it’s an explanation of our release rules, exposed by one of the older developers. > For me exposing core Python development accounts is a fundamental > flaw. What is a core Python development account?

> I think there should be a warning that the connection is
> unauthenticated (i.e. not secure). Users tend to be upset if they see
> 'https' and later find out that no certificates were verified.

Thanks Stephan, that was on my mind but I forgot it.  I’m -1 on using https if no validation is performed.

> I believe that's a very personal judgement.

Not really; it’s an explanation of our release rules, exposed by one of the older developers.

> For me exposing core Python development accounts is a fundamental
> flaw.

What is a core Python development account?

History
Date	User	Action	Args
2011-06-04 14:33:47	eric.araujo	set	recipients: + eric.araujo, loewis, fdrake, barry, techtonik, tarek, jwilk, Arfrever, skrah, alexis
2011-06-04 14:33:46	eric.araujo	set	messageid: <1307198026.95.0.503396895817.issue12226@psf.upfronthosting.co.za>
2011-06-04 14:33:46	eric.araujo	link	issue12226 messages
2011-06-04 14:33:46	eric.araujo	create