Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://mail.python.org/pipermail/python-dev/2010-June/101197.html below:

[Python-Dev] Pickle security and remote logging

• Previous message: [Python-Dev] Pickle security and remote logging
• Next message: [Python-Dev] Pickle security and remote logging
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

anatoly techtonik <techtonik <at> gmail.com> writes:

> insecure. SocketHandler and DatagramHandler docs should at least
> contain a warning about danger of exposing unpickling interfaces to
> insecure networks.

I've updated the documentation of SocketHandler.makePickle to mention security
concerns, and that the method can be overridden to use a more secure
implementation (e.g. HMAC-signed pickles).

Regards,

Vinay Sajip

• Previous message: [Python-Dev] Pickle security and remote logging
• Next message: [Python-Dev] Pickle security and remote logging
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4