Buffer overflows?

Michael Ströder michael at stroeder.com
Tue May 23 09:34:38 CEST 2000


Some server software written in Python (e.g. Medusa) claims in its
documentation to be more secure than software written in C regarding
buffer overflows.

Well, it's obvious that there are no problems with string buffers
(like strcpy() in C) within pure Python code. But many modules (e.g.
socket) are wrapping C code. How about these modules? Are there any
security reviews of the C code of the Python library?

Ciao, Michael.

More information about the Python-list mailing list