Keep It Simple, Stupid | |
PerlMonks |
Re: Perl sandboxby jepri (Parson) |
on Nov 06, 2001 at 21:41 UTC ( [id://123634]=note: print w/replies, xml ) | Need Help?? |
I did some 'research' into this about a year ago with the same goal. The conclusion I came to was that for mere mortals like me, there was no way to *really* secure perl without turning it into an language as braindead as javascript. In my case I wanted a database backend that people could run small routines against (to make some kind of extendable web community). I thought I could use the Tie::modules but it turns out using any kind of module opens the flood gates. A suprising number of reasonable commands rely on the same opcodes that 'dangerous' commands rely on. I don't know the design of Perl5 but I've been checking out Perl6 and the Parrot interpretor looks like it's going to have the same problems. While security is best done at the OS level Perl seems to go out of it's way to be hard to secure. An easier solution is to use the Inline:: series of modules to allow users to program in Basic, Java, C, CPP, Befunge, BrainF**k or whatever. These language lack the power of perl, but they also lack the security dangers. ____________________
In Section
Seekers of Perl Wisdom
|
|