Weekly Edition
Return to the Press page
| |||||||||||||
Cloudsecurity.org Interviews Guido van Rossum
cloudsecurity.org has an
interview with Guido van Rossum on the topics of
Google App Engine, Python and Security.
"cloudsecurity.org: I recently attended a fascinating talk by Justin Ferguson (a Seattle based security consultant) at eusecwest in London. He gave a great talk exploring security vulnerabilities in language interpreters and specifically highlighted some security weaknesses in Python App Engine. What are your thoughts on his research and specifically the Python issues he highlighted? When do you anticipate they will get fixed?
GvR: Weve anticipated all of the possibilities raised in Justins talk, and took measures to protect our users. Justin highlighted weaknesses in Python, but not in App Engine. Furthermore, our security model does not rely solely upon protections within the Python interpreter; there are additional protections that these external analyses have missed."
(Log in to post comments)
Cloudsecurity.org Interviews Guido van Rossum Posted Jul 2, 2008 12:14 UTC (Wed) by bboissin (subscriber, #29506) [Link] The interview looks like a typical discussion with a google employee, a lot of "I can't talk about what I'm doing, but we do great things".
Cloudsecurity.org Interviews Guido van Rossum Posted Jul 2, 2008 13:43 UTC (Wed) by darwish07 (subscriber, #49520) [Link] Seconded, I have all the respect for Guido (who doesn't), but the interview was close to being useless.
|
|||||||||||||