[Python-Dev] Sniffing passwords from PyPI using insecure connection

anatoly techtonik techtonik at gmail.com
Tue May 31 19:04:10 CEST 2011


I'd like to escalate http://bugs.python.org/issue12226 : 'use secured
channel for uploading packages to pypi' to be shipped with next Python
This will prevent pydotorg password sniffing when submitting packages
through public networks (such as hotels).

anatoly t.

More information about the Python-Dev mailing list