Security Considerations¶

The following modules have specific security considerations:

• base64:base64 security considerations inRFC 4648

• hashlib:all constructors take a “usedforsecurity” keyword-onlyargument disabling known insecure and blocked algorithms

• http.server is not suitable for production use, only implementingbasic security checks. See thesecurity considerations.

• logging:Logging configuration uses eval()

• multiprocessing:Connection.recv() uses pickle

• pickle:Restricting globals in pickle

• random shouldn’t be used for security purposes, usesecretsinstead

• shelve:shelve is based on pickle and thus unsuitable fordealing with untrusted sources

• ssl:SSL/TLS security considerations

• subprocess:Subprocess security considerations

• tempfile:mktemp is deprecated due to vulnerability to raceconditions

• xml:XML security

• zipfile:maliciously prepared .zip files can cause disk volumeexhaustion

The-I command line option can be used to run Python in isolatedmode. When it cannot be used, the-P option or thePYTHONSAFEPATH environment variable can be used to not prepend apotentially unsafe path tosys.path such as the current directory, thescript’s directory or an empty string.