Igor Stasenko wrote: > Concerning FFI sandboxing.. > why not just add -noffi option at startup time (and similar flag to > Interpreter) > then simply fail all prims which trying to use FFI callouts. > Then regardless of what you doing (loaded ffi code or not) you can't > escape sandbox.
The core issue about having FFI or Alien available in the standard system is that then people start coding against it. One you go down that road, it is hard to reverse that and make a system "sandboxable". Michael _______________________________________________ Pharo-project mailing list [email protected] http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project
