<div dir="ltr">Unless you remove all the things labelled "keep away from children". I wrote this sandbox to allow python to be used as a "mods"/"add-ons" language for a game I'm writing, hence the perhaps too strict nature.<div>
<br></div><div>About the crashers: as this is for games, its "fine" for the game to crash, as long as the sandbox is not broken while crashing.</div><div><br></div><div>time and math can probably be allowed, but random imports a lot of undesirable modules.</div>
<div><br></div><div>My sandbox doesn't use proxies, due to the introspection and complexity that it involves. Instead it completely isolates the sandboxed globals, and checks all arguments and globals for irregularities before passing control to non-sandboxed functions.</div>
</div><div class="gmail_extra"><br><br><div class="gmail_quote">On 13 August 2014 14:11, Isaac Morland <span dir="ltr"><<a href="mailto:ijmorlan@uwaterloo.ca" target="_blank">ijmorlan@uwaterloo.ca</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="HOEnZb"><div class="h5">On Mon, 11 Aug 2014, Skip Montanaro wrote:<br>
<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
On Mon, Aug 11, 2014 at 12:42 PM, matsjoyce <<a href="mailto:matsjoyce@gmail.com" target="_blank">matsjoyce@gmail.com</a>> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
There maybe some holes in my approach, but I can't find them.<br>
</blockquote>
<br>
There's the rub. Given time, I suspect someone will discover a hole or two.<br>
</blockquote>
<br></div></div>
Schneier's Law:<br>
<br>
Any person can invent a security system so clever that she or he can't<br>
think of how to break it.<br>
<br>
While I would not claim a Python sandbox is utterly impossible, I'm suspicious that the whole "consenting adults" approach in Python is incompatible with a sandbox. The whole idea of a sandbox is to absolutely prevent people from doing things even if they really want to and know what they are doing.<br>
<br>
Isaac Morland CSCF Web Guru<br>
DC 2554C, x36650 WWW Software Specialist<br>
</blockquote></div><br></div>