Path: csiph.com!x330-a1.tempe.blueboxinc.net!usenet.pasdenom.info!selfless.tophat.at!news.glorb.com!news-out.octanews.net!indigo.octanews.net!auth.beige.octanews.com.POSTED!not-for-mail
From: Paul Rubin <no.email@nospam.invalid>
Newsgroups: comp.lang.python
Subject: Re: Security test of embedded Python
References: <mailman.258.1308703797.1164.python-list@python.org> <7xhb7i7hes.fsf@ruckus.brouhaha.com> <mailman.262.1308710118.1164.python-list@python.org>
Date: Tue, 21 Jun 2011 19:40:22 -0700
Message-ID: <7xei2my4fd.fsf@ruckus.brouhaha.com>
Organization: Nightsong/Fort GNOX
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.1 (gnu/linux)
Cancel-Lock: sha1:iD8fK4CfrqsduuO/Cj/LLjOS+VI=
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Lines: 7
NNTP-Posting-Date: 21 Jun 2011 21:40:22 CDT
X-Complaints-To: abuse@octanews.net
Xref: x330-a1.tempe.blueboxinc.net comp.lang.python:8167

Chris Angelico <rosuav@gmail.com> writes:
> I'll also be looking into Pike. Unfortunately its community is far
> smaller than Python's, so security holes may be less obvious.

Actually the most obvious and widespread sandboxed language these days
is Javascript.  There's several embeddable implementations.  Maybe you
should just use one of those.