Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.lang.python > #50667

Python - remote object protocols and security

Path csiph.com!v102.xanadu-bbs.net!xanadu-bbs.net!goblin3!goblin2!goblin.stu.neva.ru!newsfeed.xs4all.nl!newsfeed3.news.xs4all.nl!xs4all!post.news.xs4all.nl!not-for-mail
Return-Path <prvs=901ab9ba6=jeanmichel@sequans.com>
X-Original-To python-list@python.org
Delivered-To python-list@mail.python.org
X-Spam-Status OK 0.155
X-Spam-Level *
X-Spam-Evidence '*H*': 0.70; '*S*': 0.01; 'python,': 0.02; 'subject:Python': 0.06; 'welcome.': 0.07; 'python': 0.11; 'subject:object': 0.16; 'subject:security': 0.16; 'prevent': 0.16; 'everyone,': 0.19; 'planned': 0.24; 'source': 0.25; 'header:In- Reply-To:1': 0.27; "i'm": 0.30; 'code': 0.31; 'everyone': 0.33; 'to:name:python-list': 0.33; "i'd": 0.34; 'objects': 0.35; 'data,': 0.36; 'executing': 0.36; "he's": 0.36; 'url:org': 0.36; 'changing': 0.37; 'thank': 0.38; 'initially': 0.38; 'to:addr :python-list': 0.38; 'to:addr:python.org': 0.39; 'how': 0.40; 'simple': 0.61; 'you.': 0.62; 'exchange': 0.63; 'information': 0.63; 'received:194': 0.64; 'provide': 0.64; 'side': 0.67; 'capable': 0.67; 'notice:': 0.67; 'person,': 0.68; 'privileged.': 0.69; 'disclose': 0.74; 'malicious': 0.84; 'sending,': 0.84; 'medium.': 0.91
X-IronPort-AV E=Sophos;i="4.89,668,1367964000"; d="scan'208,217";a="1681957"
X-Virus-Scanned amavisd-new at zimbra.sequans.com
Date Mon, 15 Jul 2013 12:13:44 +0200 (CEST)
From Jean-Michel Pichavant <jeanmichel@sequans.com>
To python-list <python-list@python.org>
In-Reply-To <59272663.8296927.1373882548643.JavaMail.root@sequans.com>
Subject Python - remote object protocols and security
MIME-Version 1.0
Content-Type multipart/alternative; boundary="----=_Part_8302246_205256686.1373883224108"
X-Mailer Zimbra 7.2.4_GA_2900 (ZimbraWebClient - GC7 (Linux)/7.2.4_GA_2900)
X-BeenThere python-list@python.org
X-Mailman-Version 2.1.15
Precedence list
List-Id General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe <http://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive <http://mail.python.org/pipermail/python-list/>
List-Post <mailto:python-list@python.org>
List-Help <mailto:python-list-request@python.org?subject=help>
List-Subscribe <http://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups comp.lang.python
Message-ID <mailman.4711.1373883293.3114.python-list@python.org> (permalink)
Lines 50
NNTP-Posting-Host 2001:888:2000:d::a6
X-Trace 1373883293 news.xs4all.nl 15880 [2001:888:2000:d::a6]:47364
X-Complaints-To abuse@xs4all.nl
Xref csiph.com comp.lang.python:50667

Show key headers only | View raw

[Multipart message — attachments visible in raw view] - view raw

Hello everyone, 


I'd like to exchange some simple python objects over the internet. 
I initially planned to use Pyro, after reading http://pythonhosted.org/Pyro4/security.html I'm still puzzled. 


I don't mind encrypting data, if someone wants to sniff what I'm sending, he's welcome. 


What I think I need to care about, is malicious code injections. Because both client/server will be in python, would someone capable of executing code by changing one side python source ? 


How do I prevent this and still provide the source to everyone ? 


JM 


-- IMPORTANT NOTICE: 

The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

Back to comp.lang.python | Previous | Next | Find similar | Unroll thread

Thread

Python - remote object protocols and security Jean-Michel Pichavant <jeanmichel@sequans.com> - 2013-07-15 12:13 +0200

csiph-web