> Hi, > > related to http://bugs.python.org/issue12226, I think it would be nice to > add a link to the SSL connection to the PyPI front page:
Which makes me wonder, why is it that PyPI doesn't use a universally accepted SSL cert instead of the CAcert one? Note: I'm a CAcert assurer myself but would prefer using a cert by one of the commercial CAs for the sake of the users. Any opinions? Jannis > --- a/pypi.html 2011-06-04 10:05:47.000000000 +0200 > +++ b/pypi.html 2011-06-04 10:05:41.000000000 +0200 > @@ -177,6 +177,19 @@ > > <br clear="right"> > > +<div id="document-navigation" style="width: 30%; float: left; display: > inline; padding: 4px;"> > +<b>Secure connection</b> > +<p style="margin-bottom: 0px;"> > +PyPI offers a secure connection: > +"<a href="https://pypi.python.org/pypi";>https://pypi.python.org/pypi</a>". > +The PyPI server certificate is signed by CAcert. On some systems > +(Windows, Ubuntu), CAcert is not a trusted authority by default. > +In order to use the SSL connection properly, import the > +"<a href="http://www.cacert.org/index.php?id=3";>CAcert Intermediate > Certificate</a>". > +into the browser. Make sure that you use the <em>Class 3 PKI Key</em> > certificate. > +</p> > +</div> > + > <div id="document-navigation" style="margin-left: 0px; width: 30%; float: > left; display: inline; padding: 4px;"> > <b>Get Packages</b> > <p style="margin-bottom: 0px;"> > > > > Stefan Krah > > > _______________________________________________ > Catalog-SIG mailing list > [email protected] > http://mail.python.org/mailman/listinfo/catalog-sig _______________________________________________ Catalog-SIG mailing list [email protected] http://mail.python.org/mailman/listinfo/catalog-sig
