Re: the arbitrary code execution in CGIHTTPServer.<p>CGIHTTPServer executes cgi files inside a folder specified at init. Its function for deciding what's inside the folder (to be executed) and what's outside (to be returned raw) is completely bust. If you urlencode the slashes you will confuse it enough to yield false negative/positive.<p>This means that if you are using CGIHTTPServer, anyone can execute anything that the web server was supposed to print, or get the source of any cgi script.<p>You should probably not be using CGIHTTPServer anyway. </PSA>
Somewhat related:<p>After nearly a year of very little activity, Jython finally has a 2.7 beta 2 version released recently, with a 2.7b3 release coming soon.<p>So, if you use Jython and you are sick of dealing with <=2.5 code, you should be in luck real soon.
They've really shinied up the web site since I last been there. I really like the ability to run Python in an interactive console on the home page too, with a live connection to an actual box on which you can actually run stuff.
Wasn't there a post on here a couple months back indicating the EOL for Python 2.7? Maybe it was "we'll release through 2.7.10, and that's it."<p>Edit: Found it here - <a href="https://news.ycombinator.com/item?id=7581434" rel="nofollow">https://news.ycombinator.com/item?id=7581434</a>. Release will continue at least through 2015, support through 2020.
I think this is the first popular Python post with a version number I've seen that doesn't have a lot of comments about the Python 2 vs 3 "battle".