2009/2/25 Schwab,Wilhelm K <[email protected]>: > Sig, > > "Head in the sandbox" is a play on words on "head in the sand." Perhaps it > is a cultural thing - it refers to the (mythical) comforting yet pointless > behavior of an ostrich: > :)
> http://www.phrases.org.uk/meanings/80800.html > > Bill > > > > > -----Original Message----- > From: [email protected] > [mailto:[email protected]] On Behalf Of Igor > Stasenko > Sent: Tuesday, February 24, 2009 8:24 PM > To: [email protected] > Subject: Re: [Pharo-project] Towards Pharo 1.0 > > 2009/2/25 Schwab,Wilhelm K <[email protected]>: >> Sig, >> >> If I am following, then the command line flag you describe is the only way >> to be certain anyway. Otherwise, one could fall victim to an FFI library >> that happens to be visible to the vm, and one's head is in the sandbox at >> that point - fair?? >> > Yes (except that i can't parse 'and one's head is in the sandbox at > that point'). > >> Of course, there are evils, and then there are evils. Things like openssl >> are unlikely to go wrong in my experience, and they offer functionality that >> is hard to replace, and stature that might be impossible to replace (we want >> _that_ library...). Besides, if you don't want things crashing, what are >> you doing on Windows? :) > > who said that my Windows is crashy? ;) > My box crashing only on power grid failures, which happens maybe once > in a month. My old UPS is dead and i'm too lazy to buy new one. > >> >> Bill >> >> >> >> >> -----Original Message----- >> From: [email protected] >> [mailto:[email protected]] On Behalf Of Igor >> Stasenko >> Sent: Tuesday, February 24, 2009 7:02 PM >> To: [email protected] >> Subject: Re: [Pharo-project] Towards Pharo 1.0 >> >> What about more generic security rule: >> - allow/deny to use external modules ? >> >> then VM could simply check this flag at attempt of loading ANY >> external module - be it plugin or something else. >> Then, it is safe to ship VM with FFI built-in, and you can even run >> FFI tests, because test functions will be sitting inside a VM but not >> in an external library. >> But once you try to make a call which requires loading new dynamic >> library - you will have a primitive failure. >> >> As you maybe know, in windows, when you loading a .dll, OS calling a >> DllMain function. And there are a chance that it can do something >> evil, what may crash VM and your sandbox is no longer a sandbox :) >> >> -- >> Best regards, >> Igor Stasenko AKA sig. >> >> _______________________________________________ >> Pharo-project mailing list >> [email protected] >> http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project >> >> _______________________________________________ >> Pharo-project mailing list >> [email protected] >> http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project >> > > > > -- > Best regards, > Igor Stasenko AKA sig. > > _______________________________________________ > Pharo-project mailing list > [email protected] > http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project > > _______________________________________________ > Pharo-project mailing list > [email protected] > http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project > -- Best regards, Igor Stasenko AKA sig. _______________________________________________ Pharo-project mailing list [email protected] http://lists.gforge.inria.fr/cgi-bin/mailman/listinfo/pharo-project
