Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://mail.python.org/pipermail/python-dev/2006-July/067055.html below:

[Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]

• Previous message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Next message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Michael Chermside wrote:

> That leaves the other problem: auxiliary means of accessing
> objects. There are things like gc.get_objects(). In the special
> case of file, which is a type that's also dangerous, there are
> tricks like "object().__class__.__subclasses__()".

My approach to that would be to not provide access to
these kinds of things via attributes, but via builtin
functions. E.g there wouldn't be a __subclasses__
attribute, but a subclasses() function. Then that
capability can be denied by not providing that
function.

--
Greg

• Previous message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Next message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4