On 27 February 2015 at 13:47, Peter Urbanec <[email protected]> wrote:
> I think it may be a good idea to keep python 2.7.3 packages in oe-core > because a move from 2.7.3 to 2.7.9 is likely to break some systems. At > least in terms of item 1, we have a large potential for breakage, since the > SSL cert checking will break anything that uses self-signed SSL certs for > HTTPS without deploying the correct CA to the client systems. As far as I > can tell, there is no system wide override for this behaviour. IIRC the general argument is if that if you're assuming a self-signed certification is valid, you've lost so much security. We're in the middle of a development cycle so this will only impact people using or moving to 1.8. I've just verified that python-imaging works for me (and works on the autobuilders), so if you can replicate the failure on demand that filing a bug would be useful. Ross
-- _______________________________________________ Openembedded-core mailing list [email protected] http://lists.openembedded.org/mailman/listinfo/openembedded-core
