[Python-Dev] rexec.py unuseable

Martin v. Löwis martin at v.loewis.de
Tue Dec 16 21:08:37 CET 2003


Luke Kenneth Casson Leighton <lkcl at lkcl.net> writes:

> > I fail to see how ACLs are a sound basis to solve the problem that
> > rexec solves. ACLs, in my view, are a sound basis to solve a different
> > problem (that of different identities accessing the same resources).
>  
>  substitute "identity" for "calling object" i.e. function and i
>  believe that there is a viable proposal.

I don't think so. Suppose I have an object A protected by ACLs. Now I
write a new method

def doit():
  A.doit()

Question 1. What is the calling object?
Question 2. Assuming it is "the doit function", and assuming the doit
function is not listed in the ACL: Will the call be executed?
If yes: What is the purpose of the ACL then?
If no: I believe the proposal is not usable in practice. For example,
what should be the ACL on calling open()?

Regards,
Martin






More information about the Python-list mailing list