Message 68550 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	hdiogenes
Recipients	hdiogenes, kousu, paulj
Date	2008-06-21.21:59:08
SpamBayes Score	0.07437296
Marked as misclassified	No
Message-id	<1214085552.09.0.40225852561.issue1180470@psf.upfronthosting.co.za>
In-reply-to

Content
This was solved in Python 3.0: http.server now uses email.parser (issue2848), which is not vulnerable to the DoS attack mentioned by Nick. Should we backport these changes to 2.6? As HTTPMessage's base class was changed to email.message, additional work would be necessary to maintain API compatibility (ie.: implementing an interface similar to mimetools.Message in HTTPMessage).

This was solved in Python 3.0: http.server now uses email.parser (issue2848), which is not 
vulnerable to the DoS attack mentioned by Nick.

Should we backport these changes to 2.6? As HTTPMessage's base class was changed to 
email.message, additional work would be necessary to maintain API compatibility (ie.: 
implementing an interface similar to mimetools.Message in HTTPMessage).

History
Date	User	Action	Args
2008-06-21 21:59:12	hdiogenes	set	spambayes_score: 0.074373 -> 0.07437296 recipients: + hdiogenes, kousu, paulj
2008-06-21 21:59:12	hdiogenes	set	spambayes_score: 0.074373 -> 0.074373 messageid: <1214085552.09.0.40225852561.issue1180470@psf.upfronthosting.co.za>
2008-06-21 21:59:11	hdiogenes	link	issue1180470 messages
2008-06-21 21:59:09	hdiogenes	create