[Python-ideas] Executable space protection: NX bit,
Wes Turner
wes.turner at gmail.com
Mon Sep 3 20:58:50 EDT 2018
So, if an application accepts user-supplied input (such as a JSON payload),
is that data marked as non-executable?
On Monday, September 3, 2018, Greg Ewing <greg.ewing at canterbury.ac.nz>
wrote:
> Jonathan Fine wrote:
>
> # Evil code!
>
>> ask_delete.__code__, ask_save.__code__ = ask_save.__code__,
>> ask_delete.__code__
>>
>
> If an attacker can trick you into executing that line of code,
> he can probably just delete your data directly.
>
> -- soon
> Greg
> _______________________________________________
> Python-ideas mailing list
> Python-ideas at python.org
> https://mail.python.org/mailman/listinfo/python-ideas
> Code of Conduct: http://python.org/psf/codeofconduct/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/python-ideas/attachments/20180903/00962d22/attachment.html>
More information about the Python-ideas
mailing list