[Python-Dev] The pysandbox project is broken (original) (raw)
Nick Coghlan ncoghlan at gmail.com
Wed Nov 13 00:40:48 CET 2013
- Previous message: [Python-Dev] The pysandbox project is broken
- Next message: [Python-Dev] The pysandbox project is broken
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 13 Nov 2013 07:18, "Victor Stinner" <victor.stinner at gmail.com> wrote:
Please tell me if you know sandbox projects for Python so I can redirect users of pysandbox to a safer solution. I already know PyPy sandbox.
Sandboxing is hard enough (see also the many JVM vulnerabilities) that the only ones I even remotely trust are the platform level mechanisms that form the foundation of the various PaaS services, including SELinux and Linux containers.
Cross platform? In process? Even Lua is hard to secure in that situation, and it has a much smaller attack surface than CPython or Java.
Cheers, Nick. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.python.org/pipermail/python-dev/attachments/20131113/2a659b9e/attachment.html>
- Previous message: [Python-Dev] The pysandbox project is broken
- Next message: [Python-Dev] The pysandbox project is broken
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]