On Tue, Nov 11, 2014 at 2:50 PM, Jed Brown <j...@jedbrown.org> wrote:
> Matthew Knepley <knep...@gmail.com> writes: > > I don't actually care whether we keep this check. However, I do think > > the arguments advanced so far do not amount to more than prejudice. I > > don't think a security argument holds water > > Security only insofar as urllib could have a vulnerability. I think > privacy is still a concern. > > > for a system that downloads tarballs from other sites without any kind > > of check. > > That is opt-in (the user passes --download). > Not for everything, like sowing. Matt -- What most experimenters take for granted before they begin their experiments is infinitely more interesting than any results to which their experiments lead. -- Norbert Wiener
