Re: [Neo4j] Securing scripting in the server

2011-11-28 Thread Marko Rodriguez
Hi Peter,

> Now, the question is if any of you has some experience tweaking the Java
> Security Manager to remove System.exit, File write permissions and other
> bad stuff from that code. Would love to see some examples of real-life
> securing JSR232 script engines. Or are there other mechanisms that work
> better than
> http://docs.oracle.com/javase/tutorial/essential/environment/security.htmlfor
> this type fo task?

Remember you, me, and Josh worked on LinkedProcess a few years back ( 
http://xmpp.org/extensions/inbox/lop.html ). Given that any random user on the 
web could execute arbitrary code on another users machines, we had to solve the 
"security hole" problem. In our Java-based reference implementation LoPSideD, 
we tweaked the JVM such that arbitrary JSR223 code does not violate particulate 
security constraints. See:


https://github.com/tinkerpop/tinkubator/blob/master/lopsided/lopsided-farm/sweden_countryside.properties

and...


https://github.com/tinkerpop/tinkubator/blob/master/lopsided/lopsided-farm/src/main/java/org/linkedprocess/farm/Farm.java#L189

...the full codebase is in the Tinkubator at this location:
https://github.com/tinkerpop/tinkubator/tree/master/lopsided

In short, I believe that this was all set at the thread-level -- ?? -- however, 
Josh was the one who did the work on security so you might want to ask him.

Hope that gives you some starting points,
Marko.

http://markorodriguez.com
___
Neo4j mailing list
User@lists.neo4j.org
https://lists.neo4j.org/mailman/listinfo/user


Re: [Neo4j] Securing scripting in the server

2011-11-28 Thread Peter Neubauer
Oh man,
that were times! Good point, will see if this is usable. Thanks a lot for
the hint!

Cheers,

/peter neubauer

GTalk:  neubauer.peter
Skype   peter.neubauer
Phone   +46 704 106975
LinkedIn   http://www.linkedin.com/in/neubauer
Twitter  http://twitter.com/peterneubauer

http://www.neo4j.org  - NOSQL for the Enterprise.
http://startupbootcamp.org/- Ă–resund - Innovation happens HERE.


On Mon, Nov 28, 2011 at 6:41 PM, Marko Rodriguez wrote:

> Hi Peter,
>
> > Now, the question is if any of you has some experience tweaking the Java
> > Security Manager to remove System.exit, File write permissions and other
> > bad stuff from that code. Would love to see some examples of real-life
> > securing JSR232 script engines. Or are there other mechanisms that work
> > better than
> >
> http://docs.oracle.com/javase/tutorial/essential/environment/security.htmlfor
> > this type fo task?
>
> Remember you, me, and Josh worked on LinkedProcess a few years back (
> http://xmpp.org/extensions/inbox/lop.html ). Given that any random user
> on the web could execute arbitrary code on another users machines, we had
> to solve the "security hole" problem. In our Java-based reference
> implementation LoPSideD, we tweaked the JVM such that arbitrary JSR223 code
> does not violate particulate security constraints. See:
>
>
> https://github.com/tinkerpop/tinkubator/blob/master/lopsided/lopsided-farm/sweden_countryside.properties
>
> and...
>
>
> https://github.com/tinkerpop/tinkubator/blob/master/lopsided/lopsided-farm/src/main/java/org/linkedprocess/farm/Farm.java#L189
>
> ...the full codebase is in the Tinkubator at this location:
>https://github.com/tinkerpop/tinkubator/tree/master/lopsided
>
> In short, I believe that this was all set at the thread-level -- ?? --
> however, Josh was the one who did the work on security so you might want to
> ask him.
>
> Hope that gives you some starting points,
> Marko.
>
> http://markorodriguez.com
> ___
> Neo4j mailing list
> User@lists.neo4j.org
> https://lists.neo4j.org/mailman/listinfo/user
>
___
Neo4j mailing list
User@lists.neo4j.org
https://lists.neo4j.org/mailman/listinfo/user