1.. _security-warnings: 2 3.. index:: single: security considerations 4 5Security Considerations 6======================= 7 8The following modules have specific security considerations: 9 10* :mod:`base64`: :ref:`base64 security considerations <base64-security>` in 11 :rfc:`4648` 12* :mod:`cgi`: :ref:`CGI security considerations <cgi-security>` 13* :mod:`hashlib`: :ref:`all constructors take a "usedforsecurity" keyword-only 14 argument disabling known insecure and blocked algorithms 15 <hashlib-usedforsecurity>` 16* :mod:`http.server` is not suitable for production use, only implementing 17 basic security checks 18* :mod:`logging`: :ref:`Logging configuration uses eval() 19 <logging-eval-security>` 20* :mod:`multiprocessing`: :ref:`Connection.recv() uses pickle 21 <multiprocessing-recv-pickle-security>` 22* :mod:`pickle`: :ref:`Restricting globals in pickle <pickle-restrict>` 23* :mod:`random` shouldn't be used for security purposes, use :mod:`secrets` 24 instead 25* :mod:`shelve`: :ref:`shelve is based on pickle and thus unsuitable for 26 dealing with untrusted sources <shelve-security>` 27* :mod:`ssl`: :ref:`SSL/TLS security considerations <ssl-security>` 28* :mod:`subprocess`: :ref:`Subprocess security considerations 29 <subprocess-security>` 30* :mod:`tempfile`: :ref:`mktemp is deprecated due to vulnerability to race 31 conditions <tempfile-mktemp-deprecated>` 32* :mod:`xml`: :ref:`XML vulnerabilities <xml-vulnerabilities>` 33* :mod:`zipfile`: :ref:`maliciously prepared .zip files can cause disk volume 34 exhaustion <zipfile-resources-limitations>` 35