Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://mail.python.org/pipermail/python-dev/2012-March/117364.html below:

[Python-Dev] Sandboxing Python

• Previous message: [Python-Dev] Sandboxing Python
• Next message: [Python-Dev] [Python-checkins] cpython: Fix a comment: PySequence_Fast() creates a list, not a tuple.
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

05.03.12 23:16, Victor Stinner написав(ла):
 > Apply the timeout would require to modify the sum() function.

sum() is just one, simple, example. Any C code could potentially run 
long enough. Another example is the recently discussed hashtable 
vulnerability:

  class badhash: __hash__ = int(42).__hash__
  set([badhash() for _ in range(100000)])

 > A more generic solution would be to use a subprocess.

Yes, it's the only way to secure implement the sandbox.

• Previous message: [Python-Dev] Sandboxing Python
• Next message: [Python-Dev] [Python-checkins] cpython: Fix a comment: PySequence_Fast() creates a list, not a tuple.
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4