[Date Prev][Date Next][Thread Prev][Thread Next]
[Date Index]
[Thread Index]
- Subject: Re: [q] web-safe loadstring
- From: Roberto Ierusalimschy <roberto@...>
- Date: Fri, 17 Oct 2008 12:50:25 -0300
> I would like to set up the environment such that the users cannot
> 'execute' something that would be able to read/write to the host's
> operating system.
>
> I am thinking that I somehow have to override all the io and print
> functions.
Just a small suggestion: start with an empty environment and then add
what is safe, instead of start with a full environment and remove what
is unsafe.
-- Roberto
