Hi, On Mar 23, 8:39 am, Chris McDonough <[email protected]> wrote: > > > is there a better safeguard? or do all paste websites (such as reddit, > > quora, and so on) share this potential security issue? > > They turn the debugger off in production.
Just a thought about security: with default pyramid templates, paster is listening on 0.0.0.0 and with debug mode activated. Wouldn't this be a security issue for newcomers if they are not behind a NAT or running a firewall ? Adrien -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
