On 25/04/2023 08:32, Simon Bin wrote:
On Tue, 2023-04-25 at 08:01 +0100, Andy Seaborne wrote:
so the deployment has to explicitly enable scripting access.
is there any way to operate a scripting enabled Jena Fuseki public and
safely ? (Graal sandboxing etc?)
The most important thing is review the custom function code for
performance that might open a DOS vector, or whether there is any code
route to system access.
The same whether in javascript or a Java extension, the difference being
more about who is developing which code.
Make sure the Fuseki is running with the least privileges required.
The framework can only do so much. JS is a programming language. These
latest changes make enabling scripting an explicit step by the operator
so that (even on Java11 - in a Java17 runtime, there isn't a script
engine unless it is configured in).
If you can sandbox GraalVM (or any other JS engine - Jena isn't not tied
to Graal), then great. But isn't it part of GraalVM Enterprise?
Andy
