The official Django position on the Python hash randomization issue is that this Python bug has been fixed in Python. Users of Django should explicitly enable hash randomization for versions of Python below 3.3. We'll probably make a formal announcement and writeup for how to do this once the changes have trickled down into more general distribution channels. Users who cannot enable randomization or cannot patch their versions of Python are advised to limit the size of requests and the number of allowed parameters per request in their webserver to the smallest practicable value for their use case, and strictly limit the maximum runtime of any given process.
Any failures of the Django test suite which are caused specifically by this randomization change are bugs. Tickets and patches are welcome. -Paul -- You received this message because you are subscribed to the Google Groups "Django developers" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/django-developers?hl=en.
