Restricted Execution of untrusted code
Emanuele D'Arrigo
manu3d at gmail.com
Sun Nov 2 19:08:58 EST 2008
On Nov 1, 12:44 am, Lawrence D'Oliveiro wrote:
> I think the most reliable solution is to take advantage of a level in the
> system that already has to provide protection against malicious code: use a
> chroot jail. Or run a complete virtualized machine with its own OS
> installation. Then the code is free to do what it wants, it simply won't
> see anything sensitive that it could compromise.
[sigh] That sound a little overkill for a small application. I guess
somebody should come up with a sandbox version of python, that can be
executed, say, with a directory provided as a parameter and all the os
calls are never made above that level.
Manu
More information about the Python-list
mailing list