On 2008-08-12 21:48, Jim Fulton wrote:
> Note that the whole idea of letting untrusted users write Python
> scripts (or ZPT or DTML) is silly to begin with. We keep forgetting
> this. :)
Agreed :-)
OTOH, I think that PythonScripts give a false sense of security by
declaring: "Python Scripts can contain a "safe" subset of the python
language. Python Scripts must be safe because they can be potentially
edited by many different users through an insecure medium like the web."
--
Marc-Andre Lemburg
eGenix.com
Professional Python Services directly from the Source (#1, Aug 12 2008)
>>> Python/Zope Consulting and Support ... http://www.egenix.com/
>>> mxODBC.Zope.Database.Adapter ... http://zope.egenix.com/
>>> mxODBC, mxDateTime, mxTextTools ... http://python.egenix.com/
________________________________________________________________________
:::: Try mxODBC.Zope.DA for Windows,Linux,Solaris,MacOSX for free ! ::::
eGenix.com Software, Skills and Services GmbH Pastor-Loeh-Str.48
D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg Registered at Amtsgericht Duesseldorf: HRB 46611
On 2008-08-12 21:48, Jim Fulton wrote:
> Note that the whole idea of letting untrusted users write Python
> scripts (or ZPT or DTML) is silly to begin with. We keep forgetting
> this. :)
Agreed :-)
OTOH, I think that PythonScripts give a false sense of security by
declaring: "Python Scripts can contain a "safe" subset of the python
language. Python Scripts must be safe because they can be potentially
edited by many different users through an insecure medium like the web."
--
Marc-Andre Lemburg
eGenix.com
Professional Python Services directly from the Source (#1, Aug 12 2008) www.egenix. com/ Zope.Database. Adapter ... http:// zope.egenix. com/ python. egenix. com/ _______ _______ _______ _______ _______ _______ _______ _______ _______ __
>>> Python/Zope Consulting and Support ... http://
>>> mxODBC.
>>> mxODBC, mxDateTime, mxTextTools ... http://
_______
:::: Try mxODBC.Zope.DA for Windows, Linux,Solaris, MacOSX for free ! ::::
eGenix.com Software, Skills and Services GmbH Pastor-Loeh-Str.48
Registered at Amtsgericht Duesseldorf: HRB 46611
D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg