Am Samstag, 21. November 2015, 13:35:12 schrieb Matthew Keeter: > If I were to replace Python with Guile, is there a way to sandbox it so that > arbitrary (perhaps > malicious) user-provided scripts can be run safely?
The languages which try to do that are Java and Javascript, and they have several bugs connected to this every year (which i.e. allowing execution of code with elevated priviledges). To make this safe, you could follow the route described by Pascal: Define a restricted sub-language which is not turing-complete. You can do that with a medium amount of hassle with Guile (my personal estimate). This will not give users a full programming language — which is exactly why it can be made safe. Best wishes, Arne
signature.asc
Description: This is a digitally signed message part.
