8Ara
Risk of using scripting language on backend?
If you are using a scripting language like for example Python for the back-end of a web-service, is there a risk connected to this which is not present if you would use a compiled language?
Take for example this pseudo-code:
password = request["password"]
if password == "abc123":
print("Welcome.")
#...
else:
print("Wrong password.")
Couldn't someone who got access to your server alter the code to remove the check password == "abc123"
so that no authentication is required anymore?
Of course you are already screwed when someone has access to your server, but isn't this an extra risk?