ggrafendorfer wrote: > Hi all, > > thank you very much for your answers, > especially Dan for the link and the subtle distinction between sage- > server and notebook-server (allthough with server-version I ment the > sage copy on our department server oposed to that on my local > computer), > but anyway, it helped me do understand things much better now, > > unfortunately my time is restricted and I know 'vmware' just by it's > name and that it's a virtual machine, > so my plan now is just to start with a python (sage) webinterface > (which I have learned last night how to do that :-)) where the user > can insert some numbers, and then delegate the task to sage, as this > is actually what I (actually my supervisor) wanted with the smallest > possible effort (I mean time, not resources on our server) > > acually sage is a total overkill for this task, but I don't want to > rewrite my program, >
Again, we caution you that access to Sage is equivalent to full access on the computer as the user that Sage is running as. People running Sage commands can delete files, send files over the internet, send email, download and run arbitrary programs, etc. If you are letting arbitrary people give you Sage commands, you are basically letting them sit down at your computer and they can do whatever you can do. That's why we strongly encourage people to run the vmware image of Sage when doing a public server. It's as simple as installing vmware (a couple of clicks, basically), then downloading and double-clicking on the sage vmware image. You might also have to change one setting in the vmware image; I'm not sure. Someone running sage commands can still mess up things inside of the virtual machine, but it's trivial to press a button to erase any changes to the image and start fresh. If Sage is an overkill, maybe sympy might be more sufficient? The same security issues above apply, though. Jason --~--~---------~--~----~------------~-------~--~----~ To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/sage-support URLs: http://www.sagemath.org -~----------~----~----~----~------~----~------~--~---
