[Python-ideas] Secure string disposal (maybe other inmutable seq types too?)

Ezequiel Brizuela [aka EHB or qlixed] qlixed at gmail.com
Sat Jun 23 16:02:30 EDT 2018

El vie., 22 de jun. de 2018 22:33, Terry Reedy <tjreedy at udel.edu> escribió:

> On 6/22/2018 8:31 PM, Ezequiel Brizuela [aka EHB or qlixed] wrote:
> > As all the string in python are immutable, is impossible to overwrite
> > the value
> Not if one uses ctypes.  Is that what you did?

No. I was using exclusivelly python strings functions from the C api.

>    Well I already do it:
> >
> > https://github.com/qlixed/python-memwiper/
> > But i hit a lot of problems in the road, I was working on me free time
> > over the last year on this and make it "almost" work, but that is not
> > relevant to the proposal.
> I think it is.  A very small fraction of Python users need such wiping.

And I doubt that it can be complete.  For instance, I suspect that a
> password entered into getpass, for instance, first exists in OS form
> before being copied into a Python string objects.  Wiping the Python
> string  would not wipe the original copy.

Agree. It migth be more places to search.

  So this really should be
> attacked at the OS level, not the language level.

This need to be tackled from all the sides. Ensuring the minimal attack
surface possible for anyone.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/python-ideas/attachments/20180623/e37cc422/attachment.html>

More information about the Python-ideas mailing list