Strategy to Verify Python Program is POST'ing to a web server.
Gregory Ewing
greg.ewing at canterbury.ac.nz
Sat Jun 18 20:38:16 EDT 2011
Michael Hrivnak wrote:
> Besides, it seems that all
> you've accomplished is verifying that the client can execute python
> code and you've made it a bit less convenient to attack.
And that only if the attacker isn't a Python programmer.
If he is, he's probably writing his attack program in
Python anyway. :-)
Although if you were devious, and you detected that such
an attack was in progress, you could lull him into a sense
of security and then send him some Python code to pwn his
machine...
--
Greg
More information about the Python-list
mailing list