当前位置: 首页 » python

How can I prevent SQL injection in PYTHON

If a lamer input is inserted into an SQL query directly, the application becomes vulnerable to SQL injection, like in the following example: dinossauro = request.GET['username'] sql = "SELECT * FROM user_contacts WHERE username = '%s';" % username To drop the tables or anything -- making the query: INSERT INTO table (column) VALUES('`**`value'); DROP TABLE table;--`**`') What may one do to p

2018-06-05 06:40:45

如何防止PYTHON中的SQL注入

如果直接将拉姆输入插入到SQL查询中,则该应用程序易受SQL注入攻击,如下例所示: dinossauro = request.GET['username'] sql = "SELECT * FROM user_contacts WHERE username = '%s';" % username 删除表或任何东西 - 使查询: INSERT INTO table (column) VALUES('`**`value'); DROP TABLE table;--`**`') 可以做些什么来防止这种情况? 首先,你可能应该只使用Django ORM,它会阻止任何SQL注入的可能性。 如果由于任

2018-06-05 06:40:45

Is it possible to use pip to install a package from a private github repository?

As the title suggests I am trying to install a python package from a private github repo. For a public repository I can issue the following command which works fine: pip install git+git://github.com/django/django.git However if I try this for a private repository: pip install git+git://github.com/echweb/echweb-utils.git I get the following output: Downloading/unpacking git+git://github.com/

2018-06-05 03:20:45

是否可以使用pip从私人github存储库安装软件包?

正如标题所示,我正尝试从私人github回购安装python软件包。 对于公共存储库,我可以发出以下正常工作的命令: pip install git+git://github.com/django/django.git 但是,如果我尝试这个私人存储库: pip install git+git://github.com/echweb/echweb-utils.git 我得到以下输出: Downloading/unpacking git+git://github.com/echweb/echweb-utils.git Cloning Git repository git://github.com/echweb/echweb-utils.git

2018-06-05 03:20:44

How to generate multiple parse trees for an ambiguous sentence in NLTK?

I have the following code in Python. sent = [("very","ADJ"),("colourful","ADJ"),("ice","NN"),("cream","NN"),("van","NN")] patterns= r""" NP:{<ADJ>*<NN>+} """ NPChunker=nltk.RegexpParser(patterns) # create chunk parser for s in NPChunker.nbest_parse(sent): print s.draw() The output is: (S (NP very/ADJ colourful/ADJ ice/NN cream/NN van/NN)) But the output should have anoth

2018-06-05 02:38:24

如何为NLTK中的歧义句子生成多个分析树?

我在Python中有以下代码。 sent = [("very","ADJ"),("colourful","ADJ"),("ice","NN"),("cream","NN"),("van","NN")] patterns= r""" NP:{<ADJ>*<NN>+} """ NPChunker=nltk.RegexpParser(patterns) # create chunk parser for s in NPChunker.nbest_parse(sent): print s.draw() 输出是: (S (NP very/ADJ colourful/ADJ ice/NN cream/NN van/NN)) 但输出应该有另外2个解析树。 (S (NP very/ADJ colou

2018-06-05 02:38:24

How to create a GUID/UUID in Python

How do I create a GUID in Python that is platform independent? I hear there is a method using ActivePython on Windows but it's Windows only because it uses COM. Is there a method using plain Python? "The uuid module, in Python 2.5 and up, provides RFC compliant UUID generation. See the module docs and the RFC for details." Docs: Python 2: http://docs.python.org/2/library/uui

2018-06-05 02:03:19

如何在Python中创建一个GUID / UUID

我如何在独立于平台的Python中创建一个GUID? 我听说有一种在Windows上使用ActivePython的方法,但它仅仅是因为它使用COM而使用Windows。 有没有使用普通Python的方法? “使用Python 2.5及以上版本的uuid模块提供符合RFC的UUID生成,详细信息请参阅模块文档和RFC。” 文档: Python 2:http://docs.python.org/2/library/uuid.html Python 3:https://docs.python.org/3/library/uuid.html 示例(在2和3上工作): &

2018-06-05 02:03:19

Making an android Python service to run in suspend state

Here's my Python script written using android-scripting: import android, time droid = android.Android() interval = 1 # every 1 minute while True: # define your own vibrate pattern here droid.vibrate(200) time.sleep(0.3) droid.vibrate(300) time.sleep(60*interval) It basically vibrates every minute (like a motivator). However, when the phone is locked with screen blank

2018-06-05 01:29:14

使Android Python服务以挂起状态运行

以下是使用android-scripting编写的Python脚本: import android, time droid = android.Android() interval = 1 # every 1 minute while True: # define your own vibrate pattern here droid.vibrate(200) time.sleep(0.3) droid.vibrate(300) time.sleep(60*interval) 它基本上每分钟振动一次(如激励)。 但是,当手机屏幕被屏蔽掉时,我感觉不到任何振动。 也许Android会冻结脚本(从而导致whil

2018-06-05 01:29:14

Simple Digit Recognition OCR in OpenCV

I am trying to implement a "Digit Recognition OCR" in OpenCV-Python (cv2). It is just for learning purposes. I would like to learn both KNearest and SVM features in OpenCV. I have 100 samples (ie images) of each digit. I would like to train with them. There is a sample letter_recog.py that comes with OpenCV sample. But I still couldn't figure out on how to use it. I don'

2018-06-04 22:40:13

简单的数字识别OpenCV中的OCR

我正尝试在OpenCV-Python(cv2)中实现“数字识别OCR”。 这仅仅是为了学习的目的。 我想在OpenCV中学习KNearest和SVM特性。 我有100个样本(即图像)的每个数字。 我想和他们一起训练。 OpenCV示例附带了一个样本letter_recog.py 。 但我仍然无法弄清楚如何使用它。 我不明白什么是样本,回复等。另外,它首先加载一个txt文件,这是我首先不了解的。 稍后再搜索一下,我可以在cpp示例中找到letter_recognition.data。

2018-06-04 22:40:13

Clustering in python(scipy) with space and time variables

The format of my dataset: [x-coordinate, y-coordinate, hour] with hour an integer value from 0 to 23. My question now is how can I cluster this data when I need an euclidean distance metric for the coordinates, but a different one for the hours (since d(23,0) is 23 in the euclidean distance metric). Is it possible to cluster data with different distance metrics for each feature in scipy? How?

2018-06-04 22:36:03

在python(scipy)中用空间和时间变量进行聚类

我的数据集格式:[x坐标,y坐标,小时],小时为0到23的整数值。 我现在的问题是,当我需要坐标的欧式距离度量标准时,如何聚类这些数据,但是对于小时则需要不同的数据(因为欧几里德距离度量标准中d(23,0)为23)。 scipy中的每个功能可以使用不同距离度量标准对数据进行聚类吗? 怎么样? 谢谢 您需要定义自己的指标,以适当的方式处理“时间”。 在scipy.spatial.distance.pdist的文档中,您可以定义自己的功能 Y = p

2018-06-04 22:36:02

How can I Have Cherry Py redirect a browser to a website?

I was trying to make a Cherry Py page that would redirect the client to a certain site on a certain day of the week. I tried doing webbrowser.open('sitename.com') but that simply opened the website in the console. Is there a way you can have it redirect? Note:This is hosted on a Linux box I have offsite and not client side. All help is appreciated! 自从我和CherryPy一起玩了一段时间,

2018-06-04 21:30:08

我如何让Cherry Py将浏览器重定向到网站?

我正在尝试创建一个Cherry Py页面,该页面将客户重定向到某个特定站点。 我试着做webbrowser.open('sitename.com')但只是在控制台中打开网站。 有没有办法让它重定向? 注意:这是托管在我有异地和非客户端的Linux机器上。 所有帮助表示赞赏! 自从我和CherryPy一起玩了一段时间,但我认为以下几点应该可以发挥作用: raise cherrypy.HTTPRedirect("www.newsite.com") @EricS的答案是完全正确的,但是您需要注意的

2018-06-04 21:30:08

Tabs versus spaces in Python programming

I have always used tabs for indentation when I do Python programming. But then I came across a question here on SO where someone pointed out that most Python programmers use spaces instead of tabs to minimize editor-to-editor mistakes. How does that make a difference? Are there other reasons why one would use spaces instead of tabs for Python? Or is it simply not true? Should I switch my e

2018-06-04 20:53:22

Python编程中的选项卡与空格

当我执行Python编程时,我总是使用制表符缩进。 但后来我在这里遇到了一个问题,有人指出大多数Python程序员使用空格而不是制表符来最小化编辑器到编辑器的错误。 这是如何改变的? 是否有其他原因为什么会使用空格代替Python的制表符? 或者它不是真的? 我是否应该切换编辑器,以便立即插入空格而不是标签,还是继续像以前一样? 因为PEP-8告诉我们要使用空格。 厌倦了缩进错别字(8个空格?否,7个oops 9 ...)追逐

2018-06-04 20:53:22

Google app engine dev

I'm just starting with google app engine and I followed the basic hello world example on google app engine. https://developers.google.com/appengine/docs/python/gettingstartedpython27/helloworld created both files in the helloworld folder. I don't want to use the GUI I prefer to use the mac terminal to work with this application. I want to start this application on my local host loc

2018-06-04 20:38:47

Google应用引擎开发者

我只是开始使用谷歌应用程序引擎,然后我在Google应用程序引擎上遵循基本的Hello World示例。 https://developers.google.com/appengine/docs/python/gettingstartedpython27/helloworld 在helloworld文件夹中创建了这两个文件。 我不想使用GUI,我更喜欢使用mac终端来处理这个应用程序。 我想通过终端在本地主机localhost:80上启动这个应用程序。 在本地运行我的基本helloworld应用程序,我所说的就是 $ dev_appser

2018-06-04 20:38:46