[cl-store-devel] On the security of cl-store
Elliott Slaughter
elliottslaughter at gmail.com
Sun Mar 7 05:45:49 UTC 2010
Hi,
I would like to use cl-store to serialize messages sent over a network
connection and am wondering if cl-store has any known security issues. I
know, for example, that pickle in python can be used to execute arbitrary
code when deserializing an object [1]. Does cl-store have any obvious issues
like this?
Thanks.
[1] http://nadiana.com/python-pickle-insecure
--
Elliott Slaughter
"Don't worry about what anybody else is going to do. The best way to predict
the future is to invent it." - Alan Kay
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/cl-store-devel/attachments/20100306/167a5606/attachment.html>
More information about the cl-store-devel
mailing list