[issue14984] netrc module allows read of non-secured .netrc file
R. David Murray
report at bugs.python.org
Sun Sep 15 20:05:03 CEST 2013
R. David Murray added the comment:
For the security fix, the check should only be done if the file is the the default .netrc. (Which would also make your error message correct...otherwise it is not :) Also, it would make more sense for the 'prop =' to be inside the 'if posix'.
Barry, with that detail fixed should I apply this to 2.6? (I'll tweak the error messages a bit, too.)
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue14984>
_______________________________________
More information about the Python-bugs-list
mailing list