☰ Menu Python

☰ Menu

보안 고려 사항

다음 모듈은 특정 보안 고려 사항이 있습니다:

• base64: base64 security considerations in RFC 4648

• hashlib: all constructors take a “usedforsecurity” keyword-only argument disabling known insecure and blocked algorithms

• http.server 는 기본적인 보안 검사만 구현하므로 프로덕션 환경에 적합하지 않습니다. security considerations 를 참조하십시오.

• logging: Logging configuration uses eval()

• multiprocessing: Connection.recv() uses pickle

• pickle: Restricting globals in pickle

• random 은 보안 목적으로 사용해서는 안 되며, 대신 secrets 를 사용해야 합니다.

• shelve: shelve is based on pickle and thus unsuitable for dealing with untrusted sources

• ssl: SSL/TLS security considerations

• subprocess: Subprocess security considerations

• tempfile: mktemp is deprecated due to vulnerability to race conditions

• xml: XML security

• zipfile: maliciously prepared .zip files can cause disk volume exhaustion

The -I command line option can be used to run Python in isolated mode. When it cannot be used, the -P option or the PYTHONSAFEPATH environment variable can be used to not prepend a potentially unsafe path to sys.path such as the current directory, the script’s directory or an empty string.

분실물 보관소