CGIHTTPServer security Breach

Discussion in 'Python' started by Andy Worms, Jul 22, 2003.

  1. Andy Worms

    Andy Worms Guest

    I'm using CGIHTTPServer to try some scripts, apparently as a first step of
    building a real server. The CGIHTTPServer source code has a comment that warns
    of potential security problems:

    SECURITY WARNING: DON'T USE THIS CODE UNLESS YOU ARE INSIDE A FIREWALL
    -- it may execute arbitrary Python code or external programs.

    Does someone know how can an outsider execute arbitrary python code or
    external problems? Are there simple ways to correct the code?

    -----------------------------
    Andy Worms

    -----------------------------
    Andy Worms, Jul 22, 2003
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Peter Hansen

    Re: Securing PyDoc and CGIHTTPserver

    Peter Hansen, Jul 10, 2003, in forum: Python
    Replies:
    7
    Views:
    428
    Peter Hansen
    Jul 15, 2003
  2. Shane Hathaway

    Re: Securing PyDoc and CGIHTTPserver

    Shane Hathaway, Jul 10, 2003, in forum: Python
    Replies:
    1
    Views:
    373
    Shane Hathaway
    Jul 11, 2003
  3. vincent delft

    CGIHTTPserver looze PYTHONPATH

    vincent delft, Jul 13, 2003, in forum: Python
    Replies:
    1
    Views:
    450
    vincent_delft
    Jul 13, 2003
  4. Joseph Geretz

    Would it be a breach of etiquette...

    Joseph Geretz, Jul 2, 2009, in forum: ASP .Net
    Replies:
    1
    Views:
    315
    Joseph Geretz
    Jul 2, 2009
  5. Zeekar
    Replies:
    7
    Views:
    111
    John Wilger
    Aug 23, 2007
Loading...

Share This Page