Pickled objects over the network
Steve Holden
steve at holdenweb.com
Sat Jul 21 08:56:36 EDT 2007
Hendrik van Rooyen wrote:
> "Steve Holden" <steve at holdenweb.com> wrote:
>
>> Hmm, I suspect I detect the sounds of the square wheel being reinvented.
>
> Very helpful, thank you, Steve - Now how about pointing out in which
> direction the round wheels are kept, and what their monikers are?
>
I think someone has already pointed out netstrings, which will allow you
to send arbitrary strings over network connections deterministically.
I'm afraid for the rest it's just a matter of encoding your information
in a way that you can decode without allowing a malicious sender to
cause arbitrary code to be called.
The issue with pickle is that it's way too general a mechanism to be
secure in open network applications, so a suggestion to beef up its
security was misguided. Trying to "beef up pickle's security" is like
trying to make a shotgun that can't kill anything.
regards
Steve
--
Steve Holden +1 571 484 6266 +1 800 494 3119
Holden Web LLC/Ltd http://www.holdenweb.com
Skype: holdenweb http://del.icio.us/steve.holden
--------------- Asciimercial ------------------
Get on the web: Blog, lens and tag the Internet
Many services currently offer free registration
----------- Thank You for Reading -------------
More information about the Python-list
mailing list