Serious privacy leak in Python for Windows

Aahz Maruch aahz at
Wed Jan 16 06:57:32 EST 2002

[posted & e-mailed]

In article <3C44FEC0.6060508 at>,
Mark Hammond  <mhammond at> wrote:
>So: to disable ALL Python Active Scripting on your machine, simply execute:
>Z:\>win32comext\axscript\client\ --unregister
>This will close the loophole, but also prevent ASP, WSH etc from working.
>Later versions of win32all/ActivePython will be setup so that ASP etc
>work by default, but you will need to manually register an alternative
>COM object for use with IE.

Just to be clear, precisely what versions of Python need this fix?  Does
this apply only to ActiveState Python, does it apply to anyone who
downloads win32all, or does it apply to all Python downloads for
                      --- Aahz  <*>  (Copyright 2002 by aahz at

Hugs and backrubs -- I break Rule 6       
Androgynous poly kinky vanilla queer het Pythonista   

"There are times when effort is important and necessary, but this should
not be taken as any kind of moral imperative."  --jdecker

More information about the Python-list mailing list