Re: Survey of lua sandboxes?

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Survey of lua sandboxes?
From: Sam Roberts <vieuxtech@...>
Date: Tue, 27 Dec 2011 13:14:45 -0800

On Mon, Dec 26, 2011 at 3:11 PM, David Favro <lua@meta-dynamic.com> wrote:
> On 12/26/2011 03:31 PM, Gé Weijers wrote:
>> What comes to mind in sandboxing Lua:
>>   * disable the code path that loads compiled VM code altogether, in the Lua
>>     C source. The small CPU time savings are not worth the risk when you're
>>     about to run potentially malicious code.
...
> Likewise for the first point, providing that you're willing to also disallow
> loading of uncompiled source code, which might often be the case in
> sandboxed contexts.

Perhaps you are not aware that maliciously constructed compiled code
can be used to segfault the interpreter, so a careful attacker could
probably execute arbitrary code. See conversations in the archive.

How careful your sandbox has to be depends on the threat model, how
important what you
are trying to protect is, and whether you are protecting from active
malicious attackers,
or just inadvertent misuse.

Cheers,
Sam

Follow-Ups:
- Re: Survey of lua sandboxes?, HyperHacker
- Re: Survey of lua sandboxes?, David Favro

References:
- Survey of lua sandboxes?, hollyrosella
- Re: Survey of lua sandboxes?, HyperHacker
- Re: Survey of lua sandboxes?, Gé Weijers
- Re: Survey of lua sandboxes?, David Favro

Prev by Date: Re: lua icons
Next by Date: Re: Yet another request for information and tips about making Lua syntax JavaScript like.
Previous by thread: Re: Survey of lua sandboxes?
Next by thread: Re: Survey of lua sandboxes?
Index(es):
- Date
- Thread