[Python-Dev] Sniffing passwords from PyPI using insecure connection (original) (raw)

anatoly techtonik techtonik at gmail.com
Tue May 31 19:04:10 CEST 2011

• Previous message: [Python-Dev] Release pages malformed on python.org
• Next message: [Python-Dev] Sniffing passwords from PyPI using insecure connection
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I'd like to escalate http://bugs.python.org/issue12226 : 'use secured channel for uploading packages to pypi' to be shipped with next Python 2.6+ This will prevent pydotorg password sniffing when submitting packages through public networks (such as hotels).

-- anatoly t.

• Previous message: [Python-Dev] Release pages malformed on python.org
• Next message: [Python-Dev] Sniffing passwords from PyPI using insecure connection
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Python-Dev mailing list