Following the link to 2.6.7 says "Python 2.6.7 has been replaced by a newer security-fix only source release of Python. Please download Python 2.6.8 instead."
Following the link to 2.6.8 says "Please download Python 2.6.9 instead." Which finally took me to the final release of the 2.6 series.
The reason it links you to 2.6.6 instead of 2.6.9 is because 2.6.6 is the newest version that has binaries available for download. You have to compile the newer versions from source if you want to use them.
Python 2.6 was 2% of pip downloads and apparently this was the rationale for dropping its support: https://github.com/pypa/pip/pull/4343 . This led to some Python libraries to also drop 2.6, as shown by library commits referencing this pull request.
RHEL/CentOS has a reputation of keeping up zombie software that is long unsupported by upstream. It's their model and their problem, rest of community shouldn't IMHO care. Hardly any projects have resources to keep compatibility with their ten-years-old releases and backport every fix.
Quite nice. And likely faster and more secure. Do an independent check for yourself. Look at the compile flags. Along with what’s statically linked, vs what conda manages as dynamically linked. Also don’t miss what all the pip-installed wheels are statically linking.
Yes! Very excited about this as it really feels like pip 9 was long overdue for an upgrade. Now if we can get the rest of the packaging story down for python it’d be great :)
I hope not. Pipenv seems like a good idea but I can't stand the interface. It seems that whenever a Mac user tries to implement a CLI tool they can't help but print verbose output by default, in various colours and with emojis scattered throughout. Pip itself has just enough output, I don't need to see every single thing the program does in different colours, just shut up and do what you're told.
Oh man I did not know this existed I am completely aligned with this.
Easily this is what I love
About the python community is that so many awesome folks just step up and do something when they seen deficiencies vs waiting for someone else to get around to it (lookin at you Swift)
I myself am prototyping a tool chain that will compile python to static C code and then compile that (with the interpreter embedded) into a binary that can be easily distributed.
Nothing on GitHub yet but it’s what I hope one day soon will fix the distribution story once and for all!
Pipenv adds extra baggage and is more complex to use for simple projects. I really like Pip's dead simple interface and that it won't break due to a joke:
right in the middle of pip-conda-deb / py27-py35-py36 conflicts here.. I was startled to see a pip 9.0.3 msg "urllib3- download is not secure, get the newest version of python"
first thanks very much for all the work in the ecosystem.. not kidding. huge respect to the SciPy stack .. and others coming up now..
second, is this pip 9 msg really a veiled coercian to use Python 3x !?! really? using security cert FUD .. I really hope this is not the right interpretation of the msgs I saw on an ubuntu server yesterday.. It is a breach of trust, and so wrong on so many levels.. DO not become what you despise.
The package index recently dropped TLS1.0/1.1 support; in some cases, like old not-upgraded Ubuntu 12 servers, OpenSSL had to be upgraded for pip to work. Maybe that's the issue you encountered?
PyPI has started requiring modern, secure TLS (TLS 1.2) to download stuff. You don't need Python 3, but you do need a more recent Python or at least one compiled against a more recent libssl. Which one are you running and do you have the exact error message?
27 comments
[ 5.5 ms ] story [ 68.3 ms ] thread2.6 was released on 01-Oct-2008 and the last security-fix release was on October 29, 2013.
Humorously, https://www.python.org/download/releases/2.6/ says "Python 2.6 has been replaced by a newer bugfix release of Python. Please download Python 2.6.7 instead."
Following the link to 2.6.7 says "Python 2.6.7 has been replaced by a newer security-fix only source release of Python. Please download Python 2.6.8 instead."
Following the link to 2.6.8 says "Please download Python 2.6.9 instead." Which finally took me to the final release of the 2.6 series.
2.6.6 isn't mentioned at https://www.python.org/download/releases/2.6/ nor in my earlier comment.
But anaconda python will work nicely on centos 6 I suspect.
On another note: I thought Pipenv was going to supplant pip? https://packaging.python.org/tutorials/managing-dependencies... It felt like they were gearing up for it to be that way anyways
* pip is the tool for installing packages
* pipenv is the tool for managing an environment in which you develop a package (and wraps pip and virtualenv to make that convenient)
* twine is the tool for uploading packages to the Python Package Index
https://github.com/sdispater/poetry
Easily this is what I love About the python community is that so many awesome folks just step up and do something when they seen deficiencies vs waiting for someone else to get around to it (lookin at you Swift)
I myself am prototyping a tool chain that will compile python to static C code and then compile that (with the interpreter embedded) into a binary that can be easily distributed.
Nothing on GitHub yet but it’s what I hope one day soon will fix the distribution story once and for all!
https://github.com/pypa/pipenv/pull/783
first thanks very much for all the work in the ecosystem.. not kidding. huge respect to the SciPy stack .. and others coming up now..
second, is this pip 9 msg really a veiled coercian to use Python 3x !?! really? using security cert FUD .. I really hope this is not the right interpretation of the msgs I saw on an ubuntu server yesterday.. It is a breach of trust, and so wrong on so many levels.. DO not become what you despise.
https://github.com/pypa/warehouse/issues/3411