Am Tue, 19 Apr 2011 19:28:50 -0700 (PDT) schrieb Jean-Paul Calderone <calderone.jeanp...@gmail.com>:
> It is completely insecure. Do not use pickle and > sockets together. Yes pickle is like eval, but that doesnt mean that one should never ever use it over a socket connection. What about ssl sockets where client and server authenticate each other? Or you encrypt the pickle dump with symmetric encryption and only load it if you can decrypt it? There are ways to ensure that the data you get can be handled as trusted. Greets Basti
signature.asc
Description: PGP signature
-- http://mail.python.org/mailman/listinfo/python-list
