[Distutils] Distutils and Distribute roadmap (and some words on Virtualenv, Pip)
David Lyon
david.lyon at preisshare.net
Wed Oct 28 00:41:05 CET 2009
On Tue, 27 Oct 2009 20:51:10 +0100, Tarek Ziadé <ziade.tarek at gmail.com>
wrote:
> $ easy_install your_bdist_wininst_dist.exe
>
> will install it and process the dependencies from the install_requires
> option.
>
> And pip should be compatible soon too. That makes this format a
> perfect binary format for win32.
I'm not sure about that Tarek..
An .exe installer as a perfect binary format for python packages?
Are you serious?
That is the biggest security threat I can think of, asking python
users to run unverified, unsigned, un-trusted executable files on
their systems.
No Tarek, don't dictate that untrusted .exe files present no
security threat to windows users.
In this case, there *couldn't be* a bigger security threat than
untrusted, unverified executables.
David
More information about the Distutils-SIG
mailing list