Is this a security risk with Python too?

Bernhard Herzog bh at intevation.de
Fri Aug 16 17:16:27 CEST 2002


Gerhard Häring <gerhard.haering at opus-gmbh.net> writes:

> Roman Suzi wrote:
> > Among numerous security alerts, I saw the following:
[current working directory on a module search path]
> > Is this true for Python too (in some cases)?
> 
> No, unless you explicitely put the working directory into Python's search
> path by changing PYTHONPATH or sys.path, for example.

Or when you're running in interactive mode or the script you pass on the
commandline is in the working directory.

   Bernhard

-- 
Intevation GmbH                                 http://intevation.de/
Sketch                                 http://sketch.sourceforge.net/
MapIt!                                           http://www.mapit.de/



More information about the Python-list mailing list