Hi Everyone,
My name is Roger Serwy and I would like to introduce myself. I am a
graduate student at the University of Illinois in electrical and
computer engineering. Python has been a primary language for my research
in signal processing and the auditory system. I use IdleX almost daily
Hi All,
What should be the ssh fingerprint be for hg.python.org? I am receiving
63:75:9b:14:b7:b2:dc:e7:cd:42:d7:19:48:6a:68:8e, but I can't verify if
it's correct.
Thank you,
Roger
___
python-committers mailing list
python-committers@python.org
htt
On 03/24/2013 11:10 PM, Ned Deily wrote:
On Mar 24, 2013, at 21:02 , Roger Serwy wrote:
What should be the ssh fingerprint be for hg.python.org? I am receiving
63:75:9b:14:b7:b2:dc:e7:cd:42:d7:19:48:6a:68:8e, but I can't verify if it's
correct.
I currently get:
The authentici
We have new contributors (who don't have a pre-existing key) use RSA:
http://docs.python.org/devguide/faq.html#id1 .
I was trying to avoid a man-in-the-middle attack by verifying the
server's key fingerprint. Those server fingerprints should be documented.
Well if a MITM attacker tries to use your ssh access to do anything nasty,
another developer will probably notice quite quickly.
(the only "nasty thing" the ssh access allows you to do is "hg push",
IIRC; still, that can trigger code execution on the buildbots)
Sure, but it would be better to
Also, what is the command to use on the server to get the public key
fingerprint?
Run "ssh-keygen -lf /path/to/public/key.pub" for the RSA, DSA, and ECDSA
keys.
___
python-committers mailing list
python-committers@python.org
http://mail.python.or
In addition, the email you sent might be subject to MITM, either when
you were submitting it, or when it was transmitted from python.org to
Roger's SMTP server. So you really need to PGP sign it :-)
And hope that I have Antoine's correct public PGP key... And down the
rabbit hole we go.
Tha
