Author lemburg
Recipients Mark.Shannon, benjamin.peterson, larry, lemburg, njs, pitrou, serhiy.storchaka
Date 2015-08-31.08:06:19
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1441008379.7.0.732417057901.issue24912@psf.upfronthosting.co.za>
In-reply-to
Content
I agree with Mark. This feature opens up a security hole large enough to drive a train through.

Looking at the python-dev thread, the only motivation appears to be making module look more like classes. I'd suggest to propose a PEP for making changes to module objects rather than creating a backdoor which let's you implement those changes at the expense of putting the whole interpreter at risk.

IMO, .__class__ of static types should not be mutable. I can understand why heap types need this feature (to e.g. be able to copy objects without invoking any .__init__() methods of unknown objects as is needed for unpickle style operations), but for static types the set of supported objects is limited and the consequences of calling their constructor is known.
History
Date User Action Args
2015-08-31 08:06:19lemburgsetrecipients: + lemburg, pitrou, larry, benjamin.peterson, njs, Mark.Shannon, serhiy.storchaka
2015-08-31 08:06:19lemburgsetmessageid: <1441008379.7.0.732417057901.issue24912@psf.upfronthosting.co.za>
2015-08-31 08:06:19lemburglinkissue24912 messages
2015-08-31 08:06:19lemburgcreate