[issue42472] security hole in eval()
STINNER Victor
report at bugs.python.org
Thu Nov 26 06:56:48 EST 2020
STINNER Victor <vstinner at python.org> added the comment:
I suggest you to read https://python-security.readthedocs.io/security.html about the Python security model. In short, as soon as you let users to execute arbitrary Python code, they get a full access to the machine.
If you want to restrict access, you must run Python inside a restricted container (or any sandbox).
----------
nosy: +vstinner
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue42472>
_______________________________________
More information about the Python-bugs-list
mailing list