Saiyang Gou <gousaiyang...@gmail.com> added the comment:
I have made PR 17824 to add auditing events for the command execution functions mentioned above. After a review on other related Python modules, I think maybe the following functions can also be audited, but a discussion may be required to determine whether they are necessary (whether these actions are sensitive enough to record, and performance trade off). - os.getenv/putenv/unsetenv - os.getcwd/chdir - os.chown/chmod - os.stat/access - os.link/symlink - os.rename/renames/replace - os.mkdir/mkdirs - os.remove/removedirs/rmdir/unlink (`shutil.rmtree` is already audited) - os.add_dll_directory - os.fork - os.kill/killpg - os.path.exists/isfile/isdir/... - signal.pthread_kill - shutil.copy* (`shutil.copytree` is already audited) - shutil.move - shutil.chown - shutil.unpack_archive (`shutil.make_archive` is already audited) - resource.prlimit - file operations in `msvcrt` - functions in `fcntl`, `syslog` - many high level networking modules such as `http.client/server`, `socketserver`, `xmlrpc` (the low-level `socket` calls are already audited) ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <https://bugs.python.org/issue39184> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
