[Python-ideas] Secure string disposal (maybe other inmutable seq types too?)
Ezequiel Brizuela [aka EHB or qlixed]
qlixed at gmail.com
Sat Jun 23 16:02:30 EDT 2018
El vie., 22 de jun. de 2018 22:33, Terry Reedy <tjreedy at udel.edu> escribió:
> On 6/22/2018 8:31 PM, Ezequiel Brizuela [aka EHB or qlixed] wrote:
> > As all the string in python are immutable, is impossible to overwrite
> > the value
>
> Not if one uses ctypes. Is that what you did?
>
No. I was using exclusivelly python strings functions from the C api.
> Well I already do it:
> >
> > https://github.com/qlixed/python-memwiper/
>
> > But i hit a lot of problems in the road, I was working on me free time
> > over the last year on this and make it "almost" work, but that is not
> > relevant to the proposal.
>
> I think it is. A very small fraction of Python users need such wiping.
>
And I doubt that it can be complete. For instance, I suspect that a
> password entered into getpass, for instance, first exists in OS form
> before being copied into a Python string objects. Wiping the Python
> string would not wipe the original copy.
Agree. It migth be more places to search.
So this really should be
> attacked at the OS level, not the language level.
This need to be tackled from all the sides. Ensuring the minimal attack
surface possible for anyone.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/python-ideas/attachments/20180623/e37cc422/attachment.html>
More information about the Python-ideas
mailing list