Comment 3 for bug 257398
Revision history for this message
| M.-A. Lemburg (mal-egenix) wrote Re: [Bug 257398] Re: PythonScripts: possible DOS attack via extensive memory usage | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
On 2008-08-12 21:48, Jim Fulton wrote:
> Note that the whole idea of letting untrusted users write Python
> scripts (or ZPT or DTML) is silly to begin with. We keep forgetting
> this. :)
Agreed :-)
OTOH, I think that PythonScripts give a false sense of security by
declaring: "Python Scripts can contain a "safe" subset of the python
language. Python Scripts must be safe because they can be potentially
edited by many different users through an insecure medium like the web."
--
Marc-Andre Lemburg
eGenix.com
Professional Python Services directly from the Source (#1, Aug 12 2008)
>>> Python/Zope Consulting and Support ... http://
>>> mxODBC.
>>> mxODBC, mxDateTime, mxTextTools ... http://
_______
:::: Try mxODBC.Zope.DA for Windows,
eGenix.com Software, Skills and Services GmbH Pastor-Loeh-Str.48
D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg