note
Brovnik
Evalling code sent to you by someone else looks dangerous to me.
<p>
Are you going to do any checking ?
<p>
Presumably you trust those sending code to you, but what happens
one day when a virus gets through ?
<p>
Maybe you should consider some sort of verification with a certificate.
<p>How about using e.g. PGP or GnuPG to sign code snippets. You could then
only import code from those on your keyring. Add those you trust
to the keyring.
<p>The code to send a new code snippet could do the signing for
you almost (except for the passphrase) invisibly.
<br>--<br><A HREF="/index.pl?node_id=80482&lastnode_id=1072">Brovnik</A>
93282
93282