Convert String to Dictionary question

[Andrew Dalke]

Jason Orendorff:
>Whereas there are no known security holes in pickle.

Nope.  Don't ever unpickle untrusted data without a *lot*
of care.

In
http://groups.google.com/groups?selm=9slgqh%24ffm%241%40slb2.atl.mindspring.
net&output=gplain
I show how to delete an arbitrary file using pickle (note:
doesn't work with cPickle, but there are any other attacks I
didn't try).

                    Andrew
                    dalke at dalkescientific.com