Defensive programming

Paul Rubin http
Sun Jun 1 16:36:36 CEST 2003

Jack Diederich <jack at> writes:
> The author brought this up on python-dev and the 'bots did indeed
> disect the arguments.  The verdict was that it is interesting but not a
> problem (or at least a solvable problem) in practice.  Specific problems are 
> best solved at specific layers, and DoS attacks that eat CPU are best solved
> at the operating system level.

I think there's something to be said for using collision resistant
hashes whenever any kind of hash is needed.  Why fall back on the OS
to get you out of trouble, when you can avoid getting in trouble in
the first place?  I haven't read the papers yet though.

More information about the Python-list mailing list