pycrypto depdency security vulnerability

[andrewmichaelsmith]

Just a heads up, this was picked up by our automated scanning.

There is a security vulnerabiltiy in the pycrypto depdency: https://github.com/dlitz/pycrypto/issues/176 Tracked under a CVE: https://security-tracker.debian.org/tracker/CVE-2013-7459

Apparently they've fixed this on master, but no release (and I think that package is no longer maintained).

I see there are other issues (#20) relating to this lib - I don't have any concrete suggestions, but we'll be looking to move away from pycrpto in the near future.