[plt-scheme] Is read safe for untrusted data?

From: Eli Barzilay (eli at barzilay.org)
Date: Fri Aug 5 13:43:56 EDT 2005

On Aug  5, Matthew Flatt wrote:
> In recent versions with #reader support, setting
> `read-accept-reader' to #t would make `read' unsafe for your
> purposes. But that's why the default is #f.

...but even with `read-accept-reader' set to #t things are safe,
unless you use a library that implements a reader that can execute
code based on what it reads.

          ((lambda (x) (x x)) (lambda (x) (x x)))          Eli Barzilay:
                  http://www.barzilay.org/                 Maze is Life!

Posted on the users mailing list.