[Distutils] a plea for backward-compatibility / smooth transitions
Donald Stufft
donald at stufft.io
Tue Jul 30 14:02:57 CEST 2013
On Jul 30, 2013, at 7:49 AM, Lennart Regebro <regebro at gmail.com> wrote:
> On Tue, Jul 30, 2013 at 8:43 AM, Donald Stufft <donald at stufft.io> wrote:
>> I have zero qualms about releasing a full disclosure along with working exploits
>> into the wild for a security vulnerability that people block me on.
>
> This is a moot point, as nobody is going to block anyone. The
> discussion is silly.
>
> //Lennart
*Shrug*
If someone says people who don't care shouldn't have to suffer the consequences i
assume that means they are advocating for no breakages in API (else the hypothetical
person would be suffering). If you can't break fundamentally insecure things then that's
a blockade on fixing the system. If that's not what the comment was proposing then I
have no idea what it means.
-----------------
Donald Stufft
PGP: 0x6E3CBCE93372DCFA // 7C6B 7C5D 5E2B 6356 A926 F04F 6E3C BCE9 3372 DCFA
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mail.python.org/pipermail/distutils-sig/attachments/20130730/ec90e27f/attachment.pgp>
More information about the Distutils-SIG
mailing list