[Python-Dev] XML DoS vulnerabilities and exploits in Python
Antoine Pitrou
solipsis at pitrou.net
Thu Feb 21 07:42:11 CET 2013
On Wed, 20 Feb 2013 18:45:10 -0500
Donald Stufft <donald.stufft at gmail.com> wrote:
>
> No software you run on your computer grabs data from someone you don't trust
> and it all validates that even though you trust them they haven't been exploited?
What the hell do you mean exactly? There are other reasons to validate
data than just "security".
> Like I said these sort of things are often caused by chaining several unrelated
> things together.
At this points this sounds like fear-mongering.
Regards
Antoine.
More information about the Python-Dev
mailing list