Nick Coghlan ncoghlan at gmail.com writes:
On 15 October 2014 12:20, Stefan Krah stefankrah at freenet.de wrote:
At this point (and possibly before) you are just trolling and not worth
any further correspondence. If some of your feigned surprise questions
are actually genuine, I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/14/2014 09:15 PM, Donald Stufft wrote:
On Oct 14, 2014, at 8:50 PM, Stefan Krah stefank...@freenet.de
wrote:
Donald Stufft donald at stufft.io writes:
If you're this upset over someone redistributing your work,
then maybe Open Source
On 15 October 2014 12:20, Stefan Krah stefank...@freenet.de wrote:
At this point (and possibly before) you are just trolling and not worth
any further correspondence. If some of your feigned surprise questions
are actually genuine, I recommend walking away from the keyboard for a
couple of
Donald Stufft donald at stufft.io writes:
If you're this upset over someone redistributing your work, then maybe
Open Source Software is the wrong hobby for you.
Usually one does not tell a core developer that his contributions are
a hobby. I have contributed 4+ lines of original, dense C
On Oct 14, 2014, at 8:50 PM, Stefan Krah stefank...@freenet.de wrote:
Donald Stufft donald at stufft.io writes:
If you're this upset over someone redistributing your work, then maybe
Open Source Software is the wrong hobby for you.
Usually one does not tell a core developer that his
On 15 Oct 2014 11:16, Donald Stufft don...@stufft.io wrote:
On Oct 14, 2014, at 8:50 PM, Stefan Krah stefank...@freenet.de wrote:
Anyway, it will be kind of tough to force U.S. exceptionalism via the
terms
and conditions on an international body of authors if only uploaded
packages
are
Nick Coghlan ncoghlan at gmail.com writes:
PyPI is hosted in the US, and thus covered by US export laws.
I don't follow Stefan's objection, however, given that the objective of
PEP 470 is to improve the user experience of external hosting, rather than
to disallow it.
Sorry if it wasn't clear.
At this point (and possibly before) you are just trolling and not worth
any further correspondence. If some of your feigned surprise questions
are actually genuine, I recommend walking away from the keyboard for a
couple of weeks and reading some literature.
Otherwise it is just a waste of
Hi Carl, Paul, all,
On Sat, Oct 11, 2014 at 18:48 -0600, Carl Meyer wrote:
Hi Holger,
On 10/11/2014 12:31 AM, holger krekel wrote:
I understand that as a fairly generic security statement. But I was trying
to
rather ask about use cases and scenarios where precisely the
On 13 October 2014 11:40, holger krekel hol...@merlinux.eu wrote:
and I just noted that the very Python guide on packaging is advertising
using plain --extra-index-url for private packages as well:
http://docs.python-guide.org/en/latest/shipping/packaging/#personal-pypi
I can see your point
On Sun, Oct 12, 2014 at 10:10 +1000, Nick Coghlan wrote:
On 12 October 2014 09:49, Donald Stufft don...@stufft.io wrote:
On Oct 11, 2014, at 7:48 PM, Nick Coghlan ncogh...@gmail.com wrote:
On 12 October 2014 04:29, Donald Stufft don...@stufft.io wrote:
I plan to put the external
On Mon, Oct 13, 2014 at 12:00 +0100, Paul Moore wrote:
On 13 October 2014 11:40, holger krekel hol...@merlinux.eu wrote:
and I just noted that the very Python guide on packaging is advertising
using plain --extra-index-url for private packages as well:
On 13 October 2014 13:08, holger krekel hol...@merlinux.eu wrote:
On Mon, Oct 13, 2014 at 12:00 +0100, Paul Moore wrote:
On 13 October 2014 11:40, holger krekel hol...@merlinux.eu wrote:
and I just noted that the very Python guide on packaging is advertising
using plain --extra-index-url for
On Oct 13, 2014, at 7:41 AM, holger krekel hol...@merlinux.eu wrote:
On Sun, Oct 12, 2014 at 10:10 +1000, Nick Coghlan wrote:
On 12 October 2014 09:49, Donald Stufft don...@stufft.io wrote:
On Oct 11, 2014, at 7:48 PM, Nick Coghlan ncogh...@gmail.com wrote:
On 12 October 2014 04:29,
On 10/11/2014 12:31 AM, holger krekel wrote:
I understand that as a fairly generic security statement. But I was trying to
rather ask about use cases and scenarios where precisely the
--extra-index-url option is useful and to be recommended.
I'd be grateful if Nick or you could still describe
(for example right now bytereef.org is down, so
we’d not discover any files there).
Indeed. It was up reliably since 2005, down for maintenance on
September 23rd (before ShellShock ...). Then I discovered that
someone had put up m3-cdecimal on PyPI (presumably abusing PyPI
as their private
On Oct 12, 2014, at 10:29 AM, Stefan Krah stefank...@freenet.de wrote:
(for example right now bytereef.org is down, so
we’d not discover any files there).
Indeed. It was up reliably since 2005, down for maintenance on
September 23rd (before ShellShock ...). Then I discovered that
Stefan Krah stefankrah at freenet.de writes:
(for example right now bytereef.org is down, so
we’d not discover any files there).
Indeed. It was up reliably since 2005, down for maintenance on
September 23rd (before ShellShock ...). Then I discovered that
someone had put up
Hi Donald,
many thanks for answering. A few follow up questions inline.
On Thu, Oct 09, 2014 at 13:40 -0400, Donald Stufft wrote:
On Oct 9, 2014, at 12:41 PM, holger krekel hol...@merlinux.eu wrote:
Numbers of users affected
-
Do i see it right that
On Oct 11, 2014, at 2:31 AM, holger krekel hol...@merlinux.eu wrote:
Hi Donald,
many thanks for answering. A few follow up questions inline.
On Thu, Oct 09, 2014 at 13:40 -0400, Donald Stufft wrote:
On Oct 9, 2014, at 12:41 PM, holger krekel hol...@merlinux.eu wrote:
Numbers of
On Oct 11, 2014, at 2:27 PM, Donald Stufft don...@stufft.io wrote:
And that the affected users can only do that if the respective
maintainers of the projects offer an external index (or re-upload to PyPI)?
No and Yes.
Wherever pip/easy_install are currently finding the download from
On 12 October 2014 04:29, Donald Stufft don...@stufft.io wrote:
I plan to put the external repositories (and the commands needed to use them)
in the UI for PyPI. I suppose I should put that in the PEP as well, I was
more
focused on defining the API differences and the changes.
I forgot to
On Oct 11, 2014, at 7:48 PM, Nick Coghlan ncogh...@gmail.com wrote:
On 12 October 2014 04:29, Donald Stufft don...@stufft.io wrote:
I plan to put the external repositories (and the commands needed to use
them)
in the UI for PyPI. I suppose I should put that in the PEP as well, I was
more
On 12 October 2014 09:49, Donald Stufft don...@stufft.io wrote:
On Oct 11, 2014, at 7:48 PM, Nick Coghlan ncogh...@gmail.com wrote:
On 12 October 2014 04:29, Donald Stufft don...@stufft.io wrote:
I plan to put the external repositories (and the commands needed to use
them)
in the UI for
Hi Holger,
On 10/11/2014 12:31 AM, holger krekel wrote:
I understand that as a fairly generic security statement. But I was trying to
rather ask about use cases and scenarios where precisely the
--extra-index-url option is useful and to be recommended.
I'd be grateful if Nick or you could
Hi Donald, Nick,
to change the somewhat unsuccessfull way how we were conversing about PEP470
so far i'd like to kindly ask you a few questions related to the PEP.
This is to check if i am maybe barking up the wrong tree and also to
enlarge the common ground/understanding that we are discussing
On Oct 9, 2014, at 12:41 PM, holger krekel hol...@merlinux.eu wrote:
Hi Donald, Nick,
to change the somewhat unsuccessfull way how we were conversing about PEP470
so far i'd like to kindly ask you a few questions related to the PEP.
This is to check if i am maybe barking up the wrong
27 matches
Mail list logo
