On Wed, 2011-03-23 at 03:41 -0700, Adrien wrote: > Hi, > > On Mar 23, 8:39 am, Chris McDonough <[email protected]> wrote: > > > > > is there a better safeguard? or do all paste websites (such as reddit, > > > quora, and so on) share this potential security issue? > > > > They turn the debugger off in production. > > Just a thought about security: with default pyramid templates, paster > is listening on 0.0.0.0 and with debug mode activated. Wouldn't this > be a security issue for newcomers if they are not behind a NAT or > running a firewall ?
Probably. - C -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
