On Sat, Apr 4, 2015 at 9:33 PM, Nick Coghlan wrote:
> So actually reading https://gist.github.com/pjeby/75ca26f8d2a7a0c68e30
> properly, you're starting to convince me that a "noconflict" metaclass
> resolver would be a valuable and viable addition to the Python 3 type
> system machinery.
>
> The
Steve Dower writes:
> Nathaniel Smith wrote:
> > And I suspect python-dev generally doesn't put much weight on the
> > extra effort required (release managers have all been using gpg for
> > decades, it's pretty trivial)
>
> I'm aware of this, but still don't see it as a reason to unnecessarily
On 04/05/2015 06:41 AM, Antoine Pitrou wrote:
On Sun, 05 Apr 2015 01:06:01 -0700
Larry Hastings wrote:
On 04/04/2015 08:21 PM, Nathaniel Smith wrote:
(I guess you could call Larry or someone, read them a hash over the
phone, and then have them create the actual gpg signatures.)
By sheer coinc
"One question, if you will - I don't think this was asked so far - is
authenticode verifiable from Linux, without Windows? And does it work
for users of WINE ?"
I've seen some info suggesting that it's verifiable, but you do need to extract
the cert and calculate the hash against less than the si
On Sun, 05 Apr 2015 01:06:01 -0700
Larry Hastings wrote:
>
> On 04/04/2015 08:21 PM, Nathaniel Smith wrote:
> > (I guess you could call Larry or someone, read them a hash over the
> > phone, and then have them create the actual gpg signatures.)
>
> By sheer coincidence, I believe Steve and I bot
Nathaniel Smith wrote:
> And I suspect python-dev generally doesn't put much weight on the
> extra effort required (release managers have all been using gpg for
> decades, it's pretty trivial)
I'm aware of this, but still don't see it as a reason to unnecessarily
duplicate process.
> or see any
On 04/04/2015 08:21 PM, Nathaniel Smith wrote:
(I guess you could call Larry or someone, read them a hash over the
phone, and then have them create the actual gpg signatures.)
By sheer coincidence, I believe Steve and I both live in the Seattle
area...!
//arry/