add gzip to exec bigbrother for sites and fix passphase print in site creator

This commit is contained in:
Kevin Froman 2020-01-29 15:44:44 -06:00
parent d0291c2fb3
commit 2bc14b5c63
2 changed files with 3 additions and 1 deletions

View File

@ -45,9 +45,11 @@ def block_exec(event, info):
"""Prevent arbitrary code execution in eval/exec and log it.""" """Prevent arbitrary code execution in eval/exec and log it."""
# because libraries have stupid amounts of compile/exec/eval, # because libraries have stupid amounts of compile/exec/eval,
# We have to use a whitelist where it can be tolerated # We have to use a whitelist where it can be tolerated
# Generally better than nothing, not a silver bullet
whitelisted_code = [ whitelisted_code = [
'netrc.py', 'netrc.py',
'shlex.py', 'shlex.py',
'gzip.py',
'<werkzeug routing>', '<werkzeug routing>',
'werkzeug/test.py', 'werkzeug/test.py',
'multiprocessing/popen_fork.py', 'multiprocessing/popen_fork.py',

View File

@ -40,7 +40,7 @@ If you want to update your site later you must remember the passphrase.''',
passphrase = getpass.getpass( passphrase = getpass.getpass(
'Please enter a site passphrase of at least ' + 'Please enter a site passphrase of at least ' +
onionrvalues.PASSWORD_LENGTH + ' characters.') str(onionrvalues.PASSWORD_LENGTH) + ' characters.')
confirm = getpass.getpass('Confirm passphrase:') confirm = getpass.getpass('Confirm passphrase:')
if passphrase != confirm: if passphrase != confirm: