| delorie.com/archives/browse.cgi | search |
| X-Authentication-Warning: | delorie.com: mail set sender to geda-user-bounces using -f |
| X-Recipient: | geda-user AT delorie DOT com |
| X-Proofpoint-Virus-Version: | vendor=fsecure |
| engine=2.50.10432:5.13.68,1.0.33,0.0.0000 | |
| definitions=2015-02-07_01:2015-02-07,2015-02-07,1970-01-01 signatures=0 | |
| X-Proofpoint-Spam-Details: | rule=notspam policy=default score=0 spamscore=0 |
| suspectscore=3 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 | |
| reason=mlx scancount=1 engine=7.0.1-1412110000 definitions=main-1502070094 | |
| From: | Chris Smith <space DOT dandy AT icloud DOT com> |
| MIME-version: | 1.0 (1.0) |
| Subject: | Re: [geda-user] FOSDEM |
| Message-id: | <027361AD-8EC2-4E0E-B43E-C48B31C53A4D@icloud.com> |
| Date: | Sat, 07 Feb 2015 09:09:50 +0000 |
| References: | <1420499386 DOT 3521 DOT 3 DOT camel AT cam DOT ac DOT uk> |
| <20150202152654 DOT GA13336 AT cuci DOT nl> <54CFD589 DOT 9040702 AT xs4all DOT nl> | |
| <CAHBYzfRkn-nJb4JfrDYyaD0WwPrpZvAgi0QdHCusgz185iNoHA AT mail DOT gmail DOT com> | |
| <CAGde_xN-iNZUvHh-E47kx1EyoPRt1018wWiDwHhYQ9+od+cJwA AT mail DOT gmail DOT com> | |
| <20150203112631 DOT 3507a0c1 AT Parasomnia DOT thuis DOT lan> | |
| <20150204054256 DOT Horde DOT Pm1JV8RJbICk9SHvIGwZ7A3 AT webmail DOT in-berlin DOT de> | |
| <CAOP4iL2stWVCy3WK0=SNu2zAbs8t6B0uyAgFuOnzG8v_MrYNfw AT mail DOT gmail DOT com> | |
| <CAGde_xN5gs5r_on=HP2RN7cy6E=2EL9eK3cp+sd9BfBaWNLVew AT mail DOT gmail DOT com> | |
| <20150204193720 DOT Horde DOT 42xUN-NzhCJRWZne-M5eCQ1 AT webmail DOT in-berlin DOT de> | |
| <90236728-E79D-47C7-BFB1-34140DB85ACB AT sbcglobal DOT net> | |
| <CAOFvGD4M48Ap=UQzL_T3yzas2rJrNFfxXRUOkOe8gA8J3bQCHg AT mail DOT gmail DOT com> | |
| <201502042333 DOT t14NX28o024789 AT envy DOT delorie DOT com> | |
| <7C1A5871-3056-482C-BC58-173D90D80F77 AT icloud DOT com> | |
| <CAOFvGD7vdircWqDYWKrKPY49gpYo4ZGsw20q9yE+4+gno3ZkhA AT mail DOT gmail DOT com> | |
| In-reply-to: | |
| <CAOFvGD7vdircWqDYWKrKPY49gpYo4ZGsw20q9yE+4+gno3ZkhA AT mail DOT gmail DOT com> | |
| To: | "geda-user AT delorie DOT com" <geda-user AT delorie DOT com> |
| X-Mailer: | iPad Mail (12B466) |
| X-MIME-Autoconverted: | from quoted-printable to 8bit by delorie.com id t1799rhr010888 |
| Reply-To: | geda-user AT delorie DOT com |
> On 6 Feb 2015, at 16:29, Jason White <whitewaterssoftwareinfo AT gmail DOT com> wrote: > > For those who have not seen, I implemented an example program in C > using Lua to safely read data defined in Lua files. I added to > protected mode to the interpreter which disables the instructions in > the Lua virtual machine which are not associated with defining > (storing) variables. So if you put something other than a variable > definition in the file, (for instance a loop or a function call) the > interpreter will just skip over it producing a warning in the console. > This makes it safe to use as a parser for data files since it disables > its ability to run it as a program; all it becomes capable of doing is > pushing strings and numbers to the stack. Why do you think it necessary to remove all that? All you need do to provide a secure sandbox is remove or sanitise a handful of built in functions and libraries. Chris
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |