This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author akoeltringer
Recipients akoeltringer
Date 2018-03-12.21:05:31
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1520888731.28.0.467229070634.issue33059@psf.upfronthosting.co.za>
In-reply-to
Content 
On my first try to use the netrc module I got back the error: 

    "~/.netrc access too permissive: access permissions must restrict access to only the owner"

I changed the file permissions and wrapped this up in try-except and went on to write some unit tests (using tempfile), assuming that the file mode checks would be performed on any netrc file I passed into the constructor (yes, I did not read the documentation sufficiently well).

Anyway, I believe that these security checks should be done for any netrc file (they contain sensitive information no matter where they are located on the file system). There was already a discussion on the topic

    https://bugs.python.org/issue14984

where there was concern regarding backwards-compatibility and the idea to re-visit this issue "in the future". That was in 2013, so maybe this "future" is now?
History
Date User Action Args
2018-03-12 21:05:31akoeltringersetrecipients: + akoeltringer
2018-03-12 21:05:31akoeltringersetmessageid: <1520888731.28.0.467229070634.issue33059@psf.upfronthosting.co.za>
2018-03-12 21:05:31akoeltringerlinkissue33059 messages
2018-03-12 21:05:31akoeltringercreate