[docs] [issue36873] http.server: Document explicitly that symbolic links are followed
report at bugs.python.org
Thu May 9 23:41:31 EDT 2019
New submission from STINNER Victor <vstinner at redhat.com>:
http.server documentation starts with a red warning:
"Warning: http.server is not recommended for production. It only implements basic security checks."
It would help to be even more explicit on what it means. For example, document that symbolic links are followed and SimpleHTTPRequestHandler directory can be "escaped" following symbolic links.
assignee: docs at python
nosy: docs at python, vstinner
title: http.server: Document explicitly that symbolic links are followed
versions: Python 3.8
Python tracker <report at bugs.python.org>
More information about the docs