This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author bruno.Piguet
Recipients Arfrever, barry, benjamin.peterson, bruno.Piguet, georg.brandl, giampaolo.rodola, larry, python-dev, r.david.murray
Date 2013-10-09.21:11:33
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1381353093.89.0.629321462422.issue14984@psf.upfronthosting.co.za>
In-reply-to
Content
I apologise for coming back to this issue lately, after its closing.
I must have misconfigured something in my tracking system.

Thank-you everybody for the work done, especiallly the careful handling and documenting of the case "only if password is present in file". I recognise my proposed patch was a bit flacky.
However, I don't get the rationale behind the restriction to the sole case where the file is the default .netrc ?
If a clear text password is exposed in any file, it is also a security problem, isn't it ? This specific file might be more difficult to find for an attacker, but not impossible.
Feel free to redirect this discussion to some other place if you want to keep this issue close and still.
History
Date User Action Args
2013-10-09 21:11:33bruno.Piguetsetrecipients: + bruno.Piguet, barry, georg.brandl, larry, giampaolo.rodola, benjamin.peterson, Arfrever, r.david.murray, python-dev
2013-10-09 21:11:33bruno.Piguetsetmessageid: <1381353093.89.0.629321462422.issue14984@psf.upfronthosting.co.za>
2013-10-09 21:11:33bruno.Piguetlinkissue14984 messages
2013-10-09 21:11:33bruno.Piguetcreate