Convert String to Dictionary question
Christian Tanzer
tanzer at swing.co.at
Sat Feb 16 02:35:33 EST 2002
"Jason Orendorff" <jason at jorendorff.com> wrote:
> 2. eval()
> Well-known gaping security hole.
>
> It seems to me that security is a compelling reason to choose
> pickle() over eval(). Am I wrong?
With regard to eval, yes. Check out the two optional arguments to
eval, before spreading FUD.
--
Christian Tanzer tanzer at swing.co.at
Glasauergasse 32 Tel: +43 1 876 62 36
A-1130 Vienna, Austria Fax: +43 1 877 66 92
More information about the Python-list
mailing list