eval vs. exec
Hans Nowak
wurmy at earthlink.net
Mon May 27 12:45:57 EDT 2002
Simon Budig wrote:
> The strings are from an external source, so I have no control over them.
In that case, Alexander's remark about security risks with eval
and exec are on point. Don't do this.
(My other mail was merely about usage of eval/exec in general.)
Regards,
--
Hans (base64.decodestring('d3VybXlAZWFydGhsaW5rLm5ldA=='))
# decode for email address ;-)
The Pythonic Quarter:: http://www.awaretek.com/nowak/
More information about the Python-list
mailing list