On Mon, Feb 13, 2012 at 9:26 PM, Leo Razoumov slonik...@gmail.com wrote:
Are TH1 and Tcl interpreters properly sand-boxed? Otherwise,
downloading and running random scripts found in some random repos does
not strike me as a sound security.
The only actions TH1 can take are to output text or
On Tue, Feb 14, 2012 at 7:53 AM, Richard Hipp d...@sqlite.org wrote:
On Mon, Feb 13, 2012 at 9:26 PM, Leo Razoumov slonik...@gmail.com wrote:
Are TH1 and Tcl interpreters properly sand-boxed? Otherwise,
downloading and running random scripts found in some random repos does
not strike me as
On Tue, Feb 14, 2012 at 07:53, Richard Hipp d...@sqlite.org wrote:
(4) Scripts are only exchanged between repositories on a fossil clone or
fossil configuration pull/sync. For the latter, detailed warnings about
changes to scripts and recommendations to redo audits might be in order.
IMHO
On Tue, Feb 14, 2012 at 01:01:39PM -0500, Leo Razoumov wrote:
On Tue, Feb 14, 2012 at 07:53, Richard Hipp d...@sqlite.org wrote:
(4) Scripts are only exchanged between repositories on a fossil clone or
fossil configuration pull/sync. For the latter, detailed warnings about
changes to
4 matches
Mail list logo
