<div>
                    Ideally authors will be signing their packages (using gpg keys). Of course
                </div><div>how to distribute keys is an exercise left to the reader.</div>
                <div></div>
                 
                <p style="color: #A0A0A8;">On Friday, June 22, 2012 at 11:48 AM, Vinay Sajip wrote:</p>
                <blockquote type="cite" style="border-left-style:solid;border-width:1px;margin-left:0px;padding-left:10px;">
                    <span><div><div><div> &lt;martin &lt;at&gt; <a href="http://v.loewis.de">v.loewis.de</a>&gt; writes:</div><div><br></div><blockquote type="cite"><div><div><br></div><div>See above. Also notice that such signing is already implemented, as part</div><div>of PEP 381.</div></div></blockquote><div><br></div><div>BTW, I notice that the certificate for <a href="https://pypi.python.org">https://pypi.python.org</a>/ expired a week</div><div>ago ...</div><div><br></div><div>Regards,</div><div><br></div><div>Vinay Sajip</div><div><br></div><div><br></div><div>_______________________________________________</div><div>Python-Dev mailing list</div><div><a href="mailto:Python-Dev@python.org">Python-Dev@python.org</a></div><div><a href="http://mail.python.org/mailman/listinfo/python-dev">http://mail.python.org/mailman/listinfo/python-dev</a></div><div>Unsubscribe: <a href="http://mail.python.org/mailman/options/python-dev/donald.stufft%40gmail.com">http://mail.python.org/mailman/options/python-dev/donald.stufft%40gmail.com</a></div></div></div></span>
                 
                 
                 
                 
                </blockquote>
                 
                <div>
                    <br>
                </div>