2009/2/25 Michael Rueger <[email protected]>: > Igor Stasenko wrote: >> Concerning FFI sandboxing.. >> why not just add -noffi option at startup time (and similar flag to >> Interpreter) >> then simply fail all prims which trying to use FFI callouts. >> Then regardless of what you doing (loaded ffi code or not) you can't >> escape sandbox. > > The core issue about having FFI or Alien available in the standard > system is that then people start coding against it. One you go down that > road, it is hard to reverse that and make a system "sandboxable". >
sound like: a) isolationists tactics b) teaching others how to write good code i really don't like when people deciding upfront what is good or bad and don't providing any choice how to change this. This is against the spirit of smalltalk. Use java then, with its sealed classes :) > Michael > > _______________________________________________ > Pharo-project mailing list > [email protected] > http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project > -- Best regards, Igor Stasenko AKA sig. _______________________________________________ Pharo-project mailing list [email protected] http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project
