subprocess escaping POpen?!

Grant Edwards invalid at invalid.invalid
Thu Aug 5 09:32:26 EDT 2010


On 2010-08-05, Chris Withers <chris at simplistix.co.uk> wrote:
> Wolfgang Rohdewald wrote:
>> On Donnerstag 05 August 2010, Chris Withers wrote:
>>> But why only the request for auth credentials?
>> 
>> for security reasons I suppose - make sure a human enters
>> the password
>
> Well yes, but what if you actually want to script it?

Scripting passwords is considered a huge security hole, so people who
care about security try to prevent it by doing things like reading
passwords from /dev/tty instead of stdin.

-- 
Grant Edwards               grant.b.edwards        Yow! I want my nose in
                                  at               lights!
                              gmail.com            



More information about the Python-list mailing list