[Tutor] Difference between SimpleCookie and SmartCookie
Kumar
hihiren1 at gmail.com
Wed Mar 25 05:35:46 CET 2009
Thanks a lot for the reply Kent .
Could you please tell me If I will try to move from SmartCookie to
SimpleCokkie in out application, what precautions should I take care?
-Thanks
Kumar
On Tue, Mar 24, 2009 at 8:50 PM, Kent Johnson <kent37 at tds.net> wrote:
> On Tue, Mar 24, 2009 at 10:33 AM, Kumar <hihiren1 at gmail.com> wrote:
> > I just came to know about this classes SimpleCookie and SmartCookie.
> > I could get that usage. But I didn't get the difference between these
> > classes?
> > Can anybody please tell me what is the difference between this classes?
>
> SmartCookie allows cookies to include objects other than strings. It
> uses the pickle module to serialize and deserialize the objects.
>
> You should never unpickle untrusted objects, it is a security hole.
> For this reason SmartCookie is not recommended and it is deprecated.
>
> Kent
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/tutor/attachments/20090325/97195d79/attachment.htm>
More information about the Tutor
mailing list