Re: Sanitizing first class values

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Sanitizing first class values
From: George Georgalis <george@...>
Date: Thu, 4 Nov 2010 21:54:38 -0700

On Thu 04 Nov 2010 at 08:31:26 AM +0200, steve donovan wrote:
>On Thu, Nov 4, 2010 at 7:04 AM, George Georgalis <george@galis.org> wrote:
>> understand how it can be used while sanitizing user input data at
>> the same time? For example, never a good idea to shell-expand or
>> interpret user input. ?How are first class values any different
>> than this practice?
>
>Ah, but then sandboxing becomes important.  You can control the
>environment in which any user values/expressions are evaluated, so
>that no potentially harmful functions can be accessed.
>
>http://lua-users.org/wiki/SandBoxes
>

Thanks, Lua is quite a sophisticated language!

-George

References:
- Sanitizing first class values, George Georgalis
- Re: Sanitizing first class values, steve donovan

Prev by Date: Re: Serialize closure by dump
Next by Date: Re: Serialize closure by dump
Previous by thread: Re: Sanitizing first class values
Next by thread: pairsBykeys() with coroutines
Index(es):
- Date
- Thread