Open
Description
When the files from the web application are extracted the following warning occurs:
/usr/lib/python2.7/dist-packages/pkg_resources.py:1031: UserWarning: /home/uas/.python-eggs is writable by group/others and vulnerable to attack when used with get_resource_filename. Consider a more secure location (set with .set_extraction_path or the PYTHON_EGG_CACHE environment variable).
warnings.warn(msg, UserWarning)
As I see it there are a few ways to handle this warning:
- Change the permissions for ~/.python-eggs with
chmod g-wx,o-wx ~/.python-eggs - Set the extraction path to a user defined location at runtime via .set_extraction_path or PYTHON_EGG_CACHE
- Suppress / ignore it
I'm not sure if this is an issue on Windows, but option 1 wont work for that use case.