Many have been asking for a 'strict' mode, and facts could be taint-checked and then fail in that mode if they're tainted.
This sandbox is still hard, though, both in implementation and design. -- http://puppetlabs.com/ | http://about.me/lak | +1-615-594-8199 On Feb 16, 2013, at 9:21 AM, "Erik Dalén" <[email protected]> wrote: I would also be interested in some sort of sandboxing mechanism for this. But it also applies to functions and types, not only templates. To properly do it you would probably have to sandbox the entire compilation into a chrooted environment and access for example data bindings through a socket api that only allows you to get the data you should get. But even then I'm not sure how safe it would really be as the facts are client supplied (all apart from the certname at least). On 15 February 2013 21:13, Jaska Kivelä <[email protected]> wrote: > Hello. > > We are a bit concerned about the way Puppet runs the ERB templates. It is > hard coded that they be run on $SAFE level 0. > This means that whatever Ruby code someone decides to write in a template > will be run with the full privileges of the > puppet server user on the puppet server. We would like to grant access to > our customers to write their own modules, > but this fact makes it impossible. Would it be possible to have the safe > level configurable? > > Thank you, > > -jk > > > -- > Nam in omnibus fere minus valent praecepta quam experimenta. -Quintilian > > Jaska Kivelä | Cybercom Finland | gsm 040 576 2988 > [email protected] | Pakkahuoneenaukio 2 A | fax 010 665 3060 > specialist | PL 13, 33201 TAMPERE | OCP - RHCE - JNCIA > > -- > You received this message because you are subscribed to the Google Groups > "Puppet Developers" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at http://groups.google.com/group/puppet-dev?hl=en. > For more options, visit https://groups.google.com/groups/opt_out. > > > -- Erik Dalén -- You received this message because you are subscribed to the Google Groups "Puppet Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-dev?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups "Puppet Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-dev?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
