On 2019-02-12 18:42:29 -0500 (-0500), Wes Turner wrote: [...] > All it has to be is an archive containing a setup.py. > > "MD5 considered harmful today: > Creating a rogue CA certificate" (2008) > https://www.win.tue.nl/hashclash/rogue-ca/
You keep trotting out PKI examples as if they have anything whatsoever to do with checksumming, but I'm quickly getting the distinct impression you don't actually know the difference so I'll stop now as we've gone well off-topic for this list. -- Jeremy Stanley
signature.asc
Description: PGP signature
-- Distutils-SIG mailing list -- distutils-sig@python.org To unsubscribe send an email to distutils-sig-le...@python.org https://mail.python.org/mailman3/lists/distutils-sig.python.org/ Message archived at https://mail.python.org/archives/list/distutils-sig@python.org/message/WIOXLEBGNIUFB4267P6UR3GA27NGZ44O/
