[python-events] To Report A Critical Vulnerability On python.org

M.-A. Lemburg mal at egenix.com
Sat Mar 28 16:35:47 CET 2015


Hi Ashish,

thank you for your report, but the events at python.org address is
for getting new Python events listed on the event calendar, not
for reporting security issues.

BTW: I checked your report. While it is true that you can figure
out whether an email is registered on python.org using this approach,
it does not allow to enumerate user account emails, so the security
implications are not all that serious.

Thanks,
-- 
Marc-Andre Lemburg
eGenix.com

Professional Python Services directly from the Source  (#1, Mar 28 2015)
>>> Python Projects, Coaching and Consulting ...  http://www.egenix.com/
>>> mxODBC Plone/Zope Database Adapter ...       http://zope.egenix.com/
>>> mxODBC, mxDateTime, mxTextTools ...        http://python.egenix.com/
________________________________________________________________________

::::: Try our mxODBC.Connect Python Database Interface for free ! ::::::

   eGenix.com Software, Skills and Services GmbH  Pastor-Loeh-Str.48
    D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg
           Registered at Amtsgericht Duesseldorf: HRB 46611
               http://www.egenix.com/company/contact/


More information about the python-events mailing list