This isn't really for users. It is for developers like me.
Yes it is a security hole but again, it is a debugger.
The people who will be using it can all ssh into the server machine with
the same ID that the server process is running on.
In fact, this is quite normal.
As it is right now, we log
Not really. Try modifying ast.literal_eval. This will be quite secure.
On 17 August 2012 19:36, Chris Angelico wrote:
> On Fri, Aug 17, 2012 at 11:28 PM, Eric Frederich
> wrote:
> > Within the debugging console, after importing all of the bindings, there
> > would be no reason to import anythin
On Fri, Aug 17, 2012 at 11:28 PM, Eric Frederich
wrote:
> Within the debugging console, after importing all of the bindings, there
> would be no reason to import anything whatsoever.
> With just the bindings I created and the Python language we could do
> meaningful debugging.
> So if I block the
What I wanted to implement was a debugging console that runs right on the
client rather than on the server.
You'd have to be logged into the application to do anything meaningful or
even start it up.
All of the C functions that I created bindings for respect the security of
the logged in user.
Wit
On Aug 17, 12:25 pm, Chris Angelico wrote:
> On Fri, Aug 17, 2012 at 12:27 PM, Steven D'Aprano
>
> wrote:
> > There is already awesome protocols for running Python code remotely over
> > a network. Please do not re-invent the wheel without good reason.
>
> > See pyro, twisted, rpyc, rpclib, jpc,
On Fri, Aug 17, 2012 at 12:27 PM, Steven D'Aprano
wrote:
> There is already awesome protocols for running Python code remotely over
> a network. Please do not re-invent the wheel without good reason.
>
> See pyro, twisted, rpyc, rpclib, jpc, and probably many others.
But they're all tools for bui
On Fri, 17 Aug 2012 02:27:42 +, Steven D'Aprano wrote:
> On Fri, 17 Aug 2012 08:43:50 +1000, Chris Angelico wrote:
>
>> On Fri, Aug 17, 2012 at 6:54 AM, Eric Frederich
>> wrote:
>>> Hello,
>>>
>>> I have a bunch of Python bindings for a 3rd party software running on
>>> the server side.
>>>
On Fri, 17 Aug 2012 08:43:50 +1000, Chris Angelico wrote:
> On Fri, Aug 17, 2012 at 6:54 AM, Eric Frederich
> wrote:
>> Hello,
>>
>> I have a bunch of Python bindings for a 3rd party software running on
>> the server side.
>> I can add client side extensions that communicate over some http / xml
On Fri, Aug 17, 2012 at 6:54 AM, Eric Frederich
wrote:
> Hello,
>
> I have a bunch of Python bindings for a 3rd party software running on the
> server side.
> I can add client side extensions that communicate over some http / xml type
> requests.
> So I can define functions that take a string and
