This is the mail archive of the guile@cygnus.com mailing list for the guile project.
Index Nav: | [Date Index] [Subject Index] [Author Index] [Thread Index] | |
---|---|---|
Message Nav: | [Date Prev] [Date Next] | [Thread Prev] [Thread Next] |
>>>>> "MC" == Matthew Crosby <crosby@nago.cs.colorado.edu> writes: MC> Hmm. Security, good point. For what I'm doing at the moment, MC> security isn't an issue. But that does interest me. Is there an MC> eqivalent of, say, safe tcl? Any interest or plans? (I'd MC> volunteer to work on it, if there is interest...) Possible source of inspiration: the Scsh web server includes an "seval handler" which allows the user to upload Scheme code to be evaluated by the server. The code is evaluated in a "toothless" module in which all potentially dangerous r4rs procedures are unavailable. It also includes simple DOS-protection in the form of a timeout for the evaulation. http://www-swiss.ai.mit.edu/scsh/contrib/net/su-httpd.html -- Eric Marsden emarsden @ mail.dotcom.fr It's elephants all the way down