Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://mail.python.org/pipermail/python-dev/2006-July/067150.html below:

[Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]

• Previous message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Next message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Brett Cannon wrote:
>  Good point.  C code could circumvent the bit check by doing all of the 
> work behind the scenes without pushing the object on the stack.  But if 
> the check is in the C code for the object itself it is much harder to 
> get around.

C code can circumvent the bit check by calling fopen() directly and pushing 
something onto the stack that isn't even recognised by the interpreter as a 
file object :)

You *have* to trust C code completely before importing it, because it has 
access to the platform C library and can do whatever the heck it wants.

Cheers,
Nick.

-- 
Nick Coghlan   |   ncoghlan at gmail.com   |   Brisbane, Australia
---------------------------------------------------------------
             http://www.boredomandlaziness.org

• Previous message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Next message: [Python-Dev] In defense of Capabilities [was: doc for new restricted execution design for Python]
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4