Nick Coghlan added the comment:

Folks being wary of upgrading to new maintenance releases is already the case - 
RHEL/CentOS selectively backport things, and other orgs like Google do 
extensive integration testing before deploying new versions. 

Folks that only use and write well behaved and well maintained software can 
readily upgrade to new point releases, large enough organisations where that 
assumption isn't necessarily valid end up having to work a bit harder :)

That said, I agree a hash randomisation style approach using environment 
variables should also work, I just expect it might be a little harder to check 
in a security auditing script.

----------

_______________________________________
Python tracker <rep...@bugs.python.org>
<http://bugs.python.org/issue23857>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

Reply via email to