> ...which looks a lot like someone trying to hack information from the
> PyPI server, so thought I'd let you know...
People are encouraged to review the code, but I'm fairly sure that these
attempts are futile. ISTM that this is a generic attack to try to fill
out parameters that remotely look li
Hi All,
I got these from a logwatch warning on my server:
/pypi?:action=/../../../../../../../../../../etc/passwd%00&digest=517d7c7014d2b581f321d500eed4305e
HTTP Response 302
/pypi?%3Aaction=../../../../../../../../../../etc/passwd HTTP
Response 302
/pypi?%3Aaction=../../../../../../.
