[issue9105] pickle security note should be more prominent

Georg Brandl added the comment: Moved pickle warning in r85621. A warning in shelve was already added for issue8855. For the tutorial, I don't think a warning needs to be added. Same goes for logging. -- nosy: +georg.brandl status: open -> closed __

[issue9105] pickle security note should be more prominent

Terry J. Reedy added the comment: FWIW, I agree too. The current location is a bit odd. -- nosy: +terry.reedy ___ Python tracker ___ _

[issue9105] pickle security note should be more prominent

Changes by Terry J. Reedy : -- versions: +Python 3.1 -Python 2.6 ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue9105] pickle security note should be more prominent

Changes by Alexander Belopolsky : -- nosy: +BreamoreBoy ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe: http://m

[issue9105] pickle security note should be more prominent

Alexander Belopolsky added the comment: The patch does not apply to py3k. Also, when you generate patches please do so from the root directory of the branch. For example, tutorial/inputoutput.rst should be patched as Doc/tutorial/inputoutput.rst. Thanks. -- ___

[issue9105] pickle security note should be more prominent

Alexander Belopolsky added the comment: LGTM Unless someone objects, I will check that the patch generates reasonable HTML and apply. -- assignee: d...@python -> belopolsky resolution: -> accepted stage: needs patch -> commit review ___ Python tra

[issue9105] pickle security note should be more prominent

Scott Lawrence added the comment: Patch warning in relevant places of pickle's vulnerability to insecure data, including the place referenced by issue8855. -- keywords: +patch nosy: +bytbox Added file: http://bugs.python.org/file18057/picklesec.patch __

[issue9105] pickle security note should be more prominent

anatoly techtonik added the comment: Also http://docs.python.org/library/pickle.html http://docs.python.org/library/logging.html#sending-and-receiving-logging-events-across-a-network and http://mail.python.org/pipermail/python-dev/2010-June/101179.html The link to Nadia blog is also very helpf

[issue9105] pickle security note should be more prominent

Alexander Belopolsky added the comment: See also issue8855. I believe Anatoly refers to http://docs.python.org/py3k/library/pickle.html I agree, the warning can be moved up so that it is visible on the first page in typical rendering. Note that there is also http://docs.python.org/py3k/tu

[issue9105] pickle security note should be more prominent

New submission from anatoly techtonik : Pickle warning about insecurity is located only at the second page near the bottom of "Relationship to other Python modules" chapter. For me the proper place for it is the first page of documentation. -- assignee: d...@python components: Document