It's not safe for running untrusted code or it simply don't satisfy your needs? You should be able to truly sandbox some Ruby code and let it do its thing using the full power of Ruby while blocking it from doing things like accessing the file system. If you don't want to use JRuby, consider using the 'trusted-sandbox' gem. It runs Ruby code within a fully controlled Docker container. You can disable network, set disk quotas, limit execution time, balance CPU with other running containers, set memory limits, etc.
And the overhead is quite low. Last Updated: February 25, Sandboxing Ruby ruby. So, that was cool. It was also a long time ago, and is not maintained anymore.
Oh, and it was apparently very hackish, going into Ruby internals a lot. Then there was something called "javasand", which I haven't looked into much And life is now good. This is exacly what I needed to do it.
Well done! The examples you give are really, very cool. Fun stuff! I had faith and was rewarded! Now textile needs an accomplice API. Meta-textile with scriptability for meta-wiki linkability. These are more like, like pink dumpster gardens…. I propose a rename, to freakyfreakysandbox. I like the way it rolls off the toung. On time, and with minimal damage to the package too! I just came back here to check if I had misspelled sandbox, as I am so apt to do.
Snadbox is one of those misspellings that would make a good name…. Fathom is really just a word meaning: to understand. Creating a Sandbox is a bit of a performance hit, so try to reuse them.
I mean on my laptop a Ruby process can make about a hundred sandboxes in a second, but can run tenthousand evals in a second. How does it know what is to be trusted or not? How are all the paths of entry being protected? Is there a way to dump the Sandbox? Dude, Drew, from way early in the comments, I had already thought of that a while ago, making a Ruby port of the old game droidbattles. But before sandbox, I had no idea how to keep them from just hacking other droids by modifying their classes.
Yay for sandbox! RSS 2. New to RedHanded? About our sections. Links technorati del. Syndicate RSS 2. And what about danger? So what are the implications? Oh, come on! It would be cool, if you had some suggestions on how to get it going.
Skicka en kommentar. Ola Bini: Programming Language Synchronicity. For those of you who hasn't played with Sandbox, it allows you to create a new area for executing Ruby where you have control on which classes are loaded and available.
It's good for lots of things. It can be made very secure, for example.
0コメント