This repository has been archived by the owner on Nov 9, 2022. It is now read-only.
Secure example code #52
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Example code (server.py) can give false impression that only the "root of the static filesystem" is available
Which is not the case (accessible /home/otheruser/verysensibledata) is accepted by the server even if it's outside the root folder.
Even if it's only a example, implementing a minimal level of security may be useful for users.
The text was updated successfully, but these errors were encountered: