[pypy-svn] r41236 - pypy/dist/pypy/doc
hpk at codespeak.net
hpk at codespeak.net
Sat Mar 24 15:29:09 CET 2007
Author: hpk
Date: Sat Mar 24 15:29:07 2007
New Revision: 41236
Modified:
pypy/dist/pypy/doc/objspace-proxies.txt
Log:
Review Taint Space intro and reference D12 to resolve the XXX.
Modified: pypy/dist/pypy/doc/objspace-proxies.txt
==============================================================================
--- pypy/dist/pypy/doc/objspace-proxies.txt (original)
+++ pypy/dist/pypy/doc/objspace-proxies.txt Sat Mar 24 15:29:07 2007
@@ -168,14 +168,13 @@
----------
The Taint Object Space provides a form of security: "tainted objects",
-inspired by various sources, including Perl's tainting (XXX more
-references needed).
+inspired by various sources, see [D12.1]_ for a more detailed discussion.
The basic idea of this kind of security is not to protect against
-malicious code, unlike sandboxing, for example. This is about the
-handling of "sensitive" data. It covers two kinds of sensitive data:
-secret data which should not leak, and untrusted data coming from an
-external source and that must be validated before it is used.
+malicious code but to help with handling and boxing sensitive data.
+It covers two kinds of sensitive data: secret data which should not leak,
+and untrusted data coming from an external source and that must be
+validated before it is used.
The idea is that, considering a large application that handles these
kinds of sensitive data, there are typically only a small number of
@@ -482,7 +481,8 @@
and dictionary objects without interfering with the type system,
i.e. ``type(proxied_list) is list`` holds true while still
giving you full control on all operations that are performed on the
-``proxied_list``.
+``proxied_list``. Please see [D12.1]_ for context,
+motivation and usage of transparent proxies.
Example of the core mechanism
-------------------------------------------
@@ -637,4 +637,7 @@
.. _`transparent.py`: ../../pypy/objspace/std/transparent.py
.. _`tputil.py`: ../../pypy/lib/tputil.py
+.. [D12.1] `High-Level Backends and Interpreter Feature Prototypes`, PyPy
+ EU-Report, 2007, http://codespeak.net/pypy/extradoc/eu-report/D12.1_H-L-Backends_and_Feature_Prototypes-2007-03-22.pdf
+
.. include:: _ref.txt
More information about the Pypy-commit
mailing list