(original) (raw)
On 7/14/06, Guido van Rossum <guido@python.org> wrote:
Fine by me. My design doc already has a preliminary list going that people can take a look at. But it could still change if security analysis shows possible problems with exposing some of them.
-Brett
On 7/14/06, Brett Cannon <brett@python.org> wrote:
> On 7/14/06, Guido van Rossum <guido@python.org> wrote:
> > Whoa, whoa. What's the *problem* we're trying to solve here?
>
> I have a use case for sandboxing. I am already having to plan to have a
> mini-sys module in a sandbox so that they cannot get access to dangerous
> things.
OK, then I propose that we wait to see which things you end up having
to provide to sandboxed code, rather than trying to analyze it to
death in abstracto.
Fine by me. My design doc already has a preliminary list going that people can take a look at. But it could still change if security analysis shows possible problems with exposing some of them.
-Brett