Message100290
This is similar to an issue I reported to the security team (same underlying issue). My concern was that with an admin installed version of Python an arbitrary user can modify site.py, or create sitecustomize.py, and cause arbitrary code execution when the admin runs Python.
IMO an admin installed Python should require admin priveleges to write to the Python install directory. I think many users would find installing to "Program Files" a pain and it would break many scripts. |
|
Date |
User |
Action |
Args |
2010-03-02 12:39:21 | michael.foord | set | recipients:
+ michael.foord, tim.peters, loewis, mhammond, nnorwitz, jaraco, mel, dsmiller, norvellspearman, carlfk, ezio.melotti, r.david.murray, flox |
2010-03-02 12:39:21 | michael.foord | set | messageid: <1267533561.19.0.653964557093.issue1284316@psf.upfronthosting.co.za> |
2010-03-02 12:39:19 | michael.foord | link | issue1284316 messages |
2010-03-02 12:39:18 | michael.foord | create | |
|