Path: csiph.com!usenet.pasdenom.info!weretis.net!feeder1.news.weretis.net!feeder.erje.net!eu.feeder.erje.net!newsfeed.xs4all.nl!newsfeed1.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail Return-Path: X-Original-To: python-list@python.org Delivered-To: python-list@mail.python.org X-Spam-Status: OK 0.008 X-Spam-Evidence: '*H*': 0.98; '*S*': 0.00; 'conventions': 0.07; 'mysql,': 0.07; 'expectation': 0.09; 'solution,': 0.09; 'style.': 0.09; 'cc:addr:python-list': 0.11; 'python': 0.11; '-tkc': 0.16; 'bugs.': 0.16; 'correctness': 0.16; 'from:addr:python.list': 0.16; 'from:addr:tim.thechases.com': 0.16; 'from:name:tim chase': 0.16; 're-written': 0.16; 'thread,': 0.16; 'folks': 0.16; 'wrote:': 0.18; 'solution.': 0.20; 'code,': 0.22; 'cc:addr:python.org': 0.22; 'server.': 0.24; 'looks': 0.24; 'cc:2**0': 0.24; 'cc:no real name:2**0': 0.24; 'pass': 0.26; 'header:In-Reply-To:1': 0.27; 'appear': 0.29; "doesn't": 0.30; 'breaking': 0.31; 'go.': 0.31; 'style': 0.33; 'trouble': 0.34; 'problem': 0.35; 'but': 0.35; 'there': 0.35; 'similar': 0.36; 'should': 0.36; 'how': 0.40; 'read': 0.60; 'easy': 0.60; 'helps': 0.61; 'areas': 0.61; 'mentioned': 0.61; 'different': 0.65; 'spot': 0.65; 'to:addr:gmail.com': 0.65; 'here': 0.66; 'look.': 0.84; 'posing': 0.84; 'received:50.22': 0.84 Date: Wed, 2 Oct 2013 08:09:36 -0500 From: Tim Chase To: =?UTF-8?B?zp3Or866zr/Pgg==?= Subject: Re: JUST GOT HACKED In-Reply-To: References: <7wioxgsl1t.fsf@benfinney.id.au> <524BBD33.1060601@rece.vub.ac.be> <524bcb71$0$2865$c3e8da3$76491128@news.astraweb.com> X-Mailer: Claws Mail 3.8.1 (GTK+ 2.24.10; x86_64-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - boston.accountservergroup.com X-AntiAbuse: Original Domain - python.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - tim.thechases.com X-Get-Message-Sender-Via: boston.accountservergroup.com: none Cc: python-list@python.org X-BeenThere: python-list@python.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: General discussion list for the Python programming language List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Newsgroups: comp.lang.python Message-ID: Lines: 28 NNTP-Posting-Host: 2001:888:2000:d::a6 X-Trace: 1380719275 news.xs4all.nl 15926 [2001:888:2000:d::a6]:48614 X-Complaints-To: abuse@xs4all.nl Xref: csiph.com comp.lang.python:55327 On 2013-10-02 13:43, =CE=9D=CE=AF=CE=BA=CE=BF=CF=82 wrote: > 2. Still feel that that the solution provided to me doesn't meet my=20 > needs and should have been re-written in a different way. This is part of the trouble people had recently in the IP-address/default-value thread. Python has what folks here call a "pythonic" style. Adhering to this style helps others read your code, and often makes it easy for other people to spot bugs. By breaking those conventions and demanding not only a solution, but one that looks the way you think it should, you make it harder for others to help you and verify the correctness of the solution. You will be better off concisely posing the problem with no expectation of how the solution will look. Look at the answers that come back: if similar solutions appear in multiple replies, then that's likely the best way to go. > Mysql pass !=3D account's password As mentioned in other areas of this thread, with access to MySQL, there are often ways to execute arbitrary shell-code on the server. -tkc