Sandboxing Python

Ned Batchelder ned at nedbatchelder.com
Mon Aug 24 16:40:18 CEST 2015


On Saturday, August 22, 2015 at 11:58:30 PM UTC-4, Laura Creighton wrote:
> Ned Batchelder has researched this one quite a bit, see:
> 
> see: http://nedbatchelder.com/blog/201206/eval_really_is_dangerous.html
> http://nedbatchelder.com/blog/201302/looking_for_python_3_builtins.html
> http://nedbatchelder.com/blog/201302/finding_python_3_builtins.html
> 
> Laura

When I saw the subject line, I was going to jump in, but it looks like
maybe I don't have to! :)

What we use at edX for sandboxing Python is isolation of processes at
the OS level, with AppArmor.  We've encapsulated it in a library called
CodeJail: https://github.com/edx/codejail

--Ned.


More information about the Python-list mailing list