[Python-Dev] Sniffing passwords from PyPI using insecure connection

"Martin v. Löwis" martin at v.loewis.de
Fri Jun 3 23:40:21 CEST 2011

> I followed up on the tracker.  I'm +0 on adding this to 2.6, but not until
> after the 2.6.7 release on Friday.
> How well has this change been tested?  Are there people for whom this could
> break things?

As others have pointed out: it would break systems that don't have the
_ssl module built.


More information about the Python-Dev mailing list