Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.lang.python > #54565
| References | <mailman.195.1379698177.18130.python-list@python.org> <l1i9vm$6l0$1@reader1.panix.com> <CAOuJsMnx8MGTJ=f7D=cj09mGiQq8j_DzXq4vEzHwX34pdx630Q@mail.gmail.com> <523CD032.6000205@nedbatchelder.com> |
|---|---|
| From | Jabba Laci <jabba.laci@gmail.com> |
| Date | 2013-09-21 21:57 +0200 |
| Subject | Re: building an online judge to evaluate Python programs |
| Newsgroups | comp.lang.python |
| Message-ID | <mailman.234.1379796783.18130.python-list@python.org> (permalink) |
Hi Ned, Could you please post here your AppArmor profile for restricted Python scripts? Thanks, Laszlo On Sat, Sep 21, 2013 at 12:46 AM, Ned Batchelder <ned@nedbatchelder.com> wrote: > On 9/20/13 6:26 PM, Jabba Laci wrote: >> >> I just found Docker ( http://docs.docker.io/en/latest/faq/ ). It seems >> sandboxing could be done with this easily. > > > At edX, I wrote CodeJail (https://github.com/edx/codejail) to use AppArmor > to run Python securely. > > For grading Python programs, we use a unit-test like series of challenges. > The student writes problems as functions (or classes), and we execute them > with unit tests (not literally unittest, but a similar idea). We also > tokenize the code to check for simple things like, did you use a while loop > when the requirement was to write a recursive function. The grading code is > not open-source, unfortunately, because it is part of the MIT courseware. > > --Ned. > >> Laszlo >> >> On Fri, Sep 20, 2013 at 10:08 PM, John Gordon <gordon@panix.com> wrote: >>> >>> In <mailman.195.1379698177.18130.python-list@python.org> Jabba Laci >>> <jabba.laci@gmail.com> writes: >>> >>>> There are several questions: >>>> * What is someone sends an infinite loop? There should be a time limit. >>> >>> You could run the judge as a background process, and kill it after ten >>> seconds if it hasn't finished. >>> >>>> * What is someone sends a malicious code? The script should be run in a >>>> sandbox. >>> >>> You could run the judge from its own account that doesn't have access to >>> anything else. For extra security, make the judge program itself owned >>> by >>> a separate account (but readable/executable by the judge account.) >>> >>> I suppose you'd have to disable mail access from the judge account too. >>> Not sure how to easily do that. >>> >>> -- >>> John Gordon A is for Amy, who fell down the stairs >>> gordon@panix.com B is for Basil, assaulted by bears >>> -- Edward Gorey, "The Gashlycrumb >>> Tinies" >>> >>> -- >>> https://mail.python.org/mailman/listinfo/python-list > >
Back to comp.lang.python | Previous | Next — Previous in thread | Find similar | Unroll thread
building an online judge to evaluate Python programs Jabba Laci <jabba.laci@gmail.com> - 2013-09-20 19:28 +0200
Re: building an online judge to evaluate Python programs Aseem Bansal <asmbansal2@gmail.com> - 2013-09-20 10:57 -0700
Re: building an online judge to evaluate Python programs Jabba Laci <jabba.laci@gmail.com> - 2013-09-20 20:30 +0200
Re: building an online judge to evaluate Python programs John Gordon <gordon@panix.com> - 2013-09-20 19:34 +0000
Re: building an online judge to evaluate Python programs Dennis Lee Bieber <wlfraed@ix.netcom.com> - 2013-09-22 12:53 -0400
Re: building an online judge to evaluate Python programs John Gordon <gordon@panix.com> - 2013-09-20 20:08 +0000
Re: building an online judge to evaluate Python programs Jabba Laci <jabba.laci@gmail.com> - 2013-09-21 00:26 +0200
Re: building an online judge to evaluate Python programs Ned Batchelder <ned@nedbatchelder.com> - 2013-09-20 18:46 -0400
Re: building an online judge to evaluate Python programs Ned Batchelder <ned@nedbatchelder.com> - 2013-09-21 16:29 -0400
Re: building an online judge to evaluate Python programs Jabba Laci <jabba.laci@gmail.com> - 2013-09-21 21:57 +0200
csiph-web