Howdy, Ladislav:
Woops, an even simpler defense:
if error? try [
do func [/query/system/rebol] compose/deep [
do [(load %untrusted.r)]
]
][dump-it]
if not ok-mods? query/clear system/words [dump-it]
> There is a simple effective attack against this:
> 1) somewhere in %untrusted.r use the statement:
> query/clear system/words
> Regards Ladislav
- [REBOL] set in object 'variable "string" Re:(5) gregco
- [REBOL] Dangerous (use of) Secure lmecir
- [REBOL] Dangerous (use of) Secure Re: allenk
- [REBOL] Re: Dangerous (use of) Secure giesse
