On Fri, Nov 6, 2009 at 17:05, Wei Tan <[email protected]> wrote: > BTW: the sandbox beanshells sounds interesting and new to me. What is > that?
Currently the beanshell scripts in a workflow have the same power as any Java code, so it could do things like System.exit() to exit Taverna, start copying your files around or sending email spam. This means that if you open a workflow from someone you don't trust, you should first check all the beanshells to see what they are up to, before you click that 'Run' button. If we use Java's standard sandbox feature then we can restrict what APIs the beanshells would be allowed to access, so that they could only do purely computational things, for instance. We would then need some kind of signing/approval system so that local workers who DO need certain privileges would work - for instance so that the "Fetch web page" worker was allowed to access the net, or so that "Read file" would be allowed to read files - but maybe only from folders the users have given Taverna read access to. See also http://www.mygrid.org.uk/dev/issues/browse/T2-421 (I've added this email as a comment) -- Stian Soiland-Reyes, myGrid team School of Computer Science The University of Manchester ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ taverna-hackers mailing list [email protected] Web site: http://www.taverna.org.uk Mailing lists: http://www.taverna.org.uk/taverna-mailing-lists/ Developers Guide: http://www.mygrid.org.uk/tools/developer-information
