Executing untrusted code

Nobody nobody at nowhere.com
Sat Aug 8 02:40:51 CEST 2009


On Fri, 07 Aug 2009 08:15:08 -0700, Emanuele D'Arrigo wrote:

> Are
> there best practices to at least minimize some of the risks associated
> with untrusted code execution?

Yes: don't execute it. Failing that, run the Python interpreter within a
sandbox.

If you want to support restricted execution within a language, it has to
be built into the language from day one. Trying to bolt it on later is a
fool's errand.




More information about the Python-list mailing list