[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [pygame] Scripting language

To: pygame-users@xxxxxxxx
Subject: Re: [pygame] Scripting language
From: Greg Ewing <greg.ewing@xxxxxxxxxxxxxxxx>
Date: Tue, 19 Dec 2006 14:54:48 +1300
Delivered-to: archiver@seul.org
Delivered-to: pygame-users-outgoing@seul.org
Delivered-to: pygame-users@seul.org
Delivery-date: Mon, 18 Dec 2006 20:56:41 -0500
In-reply-to: <458723C6.1050408@pld-linux.org>
References: <74a945120612162102s10cc1da8y31d50c4fa09d295e@mail.gmail.com> <e41aa83c0612180135y5ecd9a72s3e334eeb2e540e9@mail.gmail.com> <74a945120612180941v74dda2a8lb654a52789c0de83@mail.gmail.com> <200612190803.08935.richardjones@optushome.com.au> <EF8048E6-3744-4167-B3EA-3B8FCAF9A1ED@gmail.com> <499A3636-7197-4AF9-9565-56D5BB82F1F6@hispeed.ch> <7F73F842-E1FD-464E-B12B-744D2B96B371@gmail.com> <73F6B199-DE97-492E-93BE-50AC0810A7F8@hispeed.ch> <458723C6.1050408@pld-linux.org>
Reply-to: pygame-users@xxxxxxxx
Sender: owner-pygame-users@xxxxxxxx
User-agent: Mozilla Thunderbird 1.0.5 (Macintosh/20050711)

Jakub Piotr CÅapa wrote:

And if you want to expose anything than you leave a way to go through your function to your module and than to anything you want.


Just to bring this into sharp focus, consider

Python 2.3 (#1, Aug  5 2003, 15:52:30)
[GCC 3.1 20020420 (prerelease)] on darwin
Type "help", "copyright", "credits" or "license" for more information.
>>> (3).__class__.__bases__[0].__subclasses__()[-3]
<type 'file'>

So you don't even have to import anything or refer to any
names in the builtin namespace to wreak havoc.

That's the reason why restricted execution was withdrawn from the stdlib. Nobody seems to care about security enught to handle this (rather difficult) problem.


That's not entirely true -- there are efforts underway to
come up with a new model for sandboxed execution. It'll probably
be a while before anything usable comes out of that, though.

As things are, the only way to be completely sure that the
user's code can't mess anything up is to run it in a separate
process. That has other advantages, too, such as being able
to limit memory and CPU usage, which are also difficult or
impossible to do within a single Python process.

--
Greg

Follow-Ups:
- Re: [pygame] Scripting language
  - From: Ethan Glasser-Camp

References:
- [pygame] map format
  - From: spotter .
- Re: [pygame] map format
  - From: Chris Smith
- Re: [pygame] map format
  - From: spotter .
- Re: [pygame] map format
  - From: Richard Jones
- [pygame] Scripting language
  - From: Brandon N
- Re: [pygame] Scripting language
  - From: Farai Aschwanden
- Re: [pygame] Scripting language
  - From: Brandon N
- Re: [pygame] Scripting language
  - From: Farai Aschwanden
- Re: [pygame] Scripting language
  - From: Jakub Piotr CÅapa

Prev by Author: Re: [pygame] stupidity, and a lesson learned
Next by Author: Re: [pygame] Scripting language
Previous by thread: Re: [pygame] Scripting language
Next by thread: Re: [pygame] Scripting language
Index(es):
- Author
- Thread