there's nothing like reading through production python code and finding where they use exec and eval to load in a module and run a method whose names they get at runtime.

folks, python has some pretty amazing introspection capabilities that let you do this without opening a max-max-truck-sized security hole.

*checks history on this file*

yes, even in python 2.6, you could still avoid eval/exec.