On Oct 16, 2013, at 22:54 , Filippo Fadda <[email protected]> wrote:
> Sandboxing is something optional I think, you need only when you are > developing a CouchApp, when you do all in JavaScript, using the _users > database and running the app inside CouchDB. But if you are just using > CouchDB like a database, developing a web app using PHP or Python, for > example, you'll never give access to CouchDB from outside, through Futon for > example, so no one will be able to store a new design doc in your database to > run malicious code. I'm using PHP with the ElephantOnCouch Query Server, > writing ddoc in PHP, and I really don't see why I should using runkit to > sandboxing the Query Server. That was exactly my point. Thank you for making it more clear, Filippo :) Best Jan -- > > -Filippo > > On Oct 16, 2013, at 10:27 PM, Jan Lehnardt wrote: > >> Another option would be to start with treating the Elexir Query Server >> like the Erlang Query Server and keep it off by default and with full >> access to the internals, so people could opt into it, if their environment >> allows for it. >> >> Sandboxing could be a step on top or later. >> >> I for one would like to see native Elexir support for Views et.al in CouchDB >> :) >> >> Best >> Jan >> -- >> >> On Oct 16, 2013, at 20:48 , Paul Davis <[email protected]> wrote: >> >>> There have been discussions on figuring out how to sandbox Erlang. The >>> biggest thing on that front was that we'd want it to be a whitelist as >>> opposed to a blacklist of modules and/or module/function pairs. The >>> second is that with dynamic invocation its not immediately apparent if >>> that's entirely possible to do. >>> >>> On Wed, Oct 16, 2013 at 10:39 AM, Chris Keele <[email protected]> wrote: >>>> Hey everyone! I'm trying to develop a sandbox for Elixir, and I wanted to >>>> see how such a library might prove useful to the CouchDB dev community. >>>> >>>> My initial goal is just to be able to run string of code in a predefined >>>> environment with configurable modules disabled, returning all output. But >>>> I'd like to design it for bigger things from the ground up, so I was >>>> wondering what sorts of requirements you might have of a sandbox library >>>> if you wanted to, say, implement a secure view processor. >>>> >>>> I've started a discussion thread here: >>>> https://groups.google.com/forum/#!topic/elixir-lang-talk/wA1l74HCZmI, but >>>> I'm particularly interested in your opinions! >>>> -- >>>> Chris Keele >>>> >> >
signature.asc
Description: Message signed with OpenPGP using GPGMail
