[Python-checkins] r51882 - python/branches/bcannon-objcap/securing_python.txt
brett.cannon
python-checkins at python.org
Thu Sep 14 23:21:23 CEST 2006
Author: brett.cannon
Date: Thu Sep 14 23:21:22 2006
New Revision: 51882
Modified:
python/branches/bcannon-objcap/securing_python.txt
Log:
Add some notes of issues that exist currently with the interpreter module.
Modified: python/branches/bcannon-objcap/securing_python.txt
==============================================================================
--- python/branches/bcannon-objcap/securing_python.txt (original)
+++ python/branches/bcannon-objcap/securing_python.txt Thu Sep 14 23:21:22 2006
@@ -26,6 +26,7 @@
+ Sandboxed versions of built-ins (`Sanitizing Built-In Types`_)
- open()
- __import__() / PEP 302 importer (`Imports`_) <critical>
+ * Make sure importing built-in modules can be blocked.
- execfile()
* Force to go through open()
+ Prevents opening unauthorized files.
@@ -55,6 +56,11 @@
otherwise make an instance of InterpreterException?
* Need to watch out for malicious __str__() instances that
could do something nasty.
+ - Be able to clear exceptions in the interpreter to allow reuse
+ * Raise an exception if the interpreter is used while an
+ exception is still set.
+ * Provide a function to clear any set exeception.
++ Tear out old restricted mode code.
Introduction
More information about the Python-checkins
mailing list