Re: A secure version of Python

Dave Brennan (brennan@hal.com)
31 Aug 1994 19:20:18 GMT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Mike Tibbs: "trying to read from pipe"
Previous message: Ron Forrester: "Re: Survey: Python on Alpha AXP Windows NT"
Maybe in reply to: Andrew KUCHLING: "A secure version of Python"

While chroot() is an ok (but as pointed out, limited) solution, note that
it is a Unix-only solution. It's not even POSIX, so if you care anything
about portability it really isn't a workable solution.

Maybe you just need a way to validate code before executing. Something
like a PGP-signed code segment that would (a) generally insure that the
code isn't a trojan horse, and (b) even if it was, you'd have a pretty
good idea where it came from. Still, not perfect, but better.

-- 
Dave Brennan                         HaL Computer Systems, Austin, TX, USA
brennan@hal.com                      http://www.hal.com/~brennan

Next message: Mike Tibbs: "trying to read from pipe"
Previous message: Ron Forrester: "Re: Survey: Python on Alpha AXP Windows NT"
Maybe in reply to: Andrew KUCHLING: "A secure version of Python"