webbrowser module + urls ending in .py = a security hole?

Fuzzyman fuzzyman at gmail.com
Mon Jan 30 13:01:25 CET 2006


It sounds like you're running on windows *and* that webbrowser.py just
uses ``os.startfile``.

For html files (associated with your default browser) this will *do the
right thing*. For everything else, it will *do the wrong thing*.

I could well be wrong though...

All the best,


Fuzzyman
http://www.voidspace.org.uk/python/index.shtml




More information about the Python-list mailing list