[Bf-committers] Web Plugin :: Python Sandbox
Marcelo Coraça de Freitas
mfreitas at ydeasolutions.com.br
Thu Aug 28 00:03:09 CEST 2008
Howdy all,
In a short inspection into the plugin code I found an interesting
implementation in the KX_PythonInit.cpp file: sandboxing!
Well, not a complete sandbox but it disables the "open" function and
overwrite the "import" in such a way only trusted packages (GameLogic,
GameKeys, PhysicsConstraints, Rasterizer and Mathutils) can be imported.
Python gurus: is this a safe/sane approach? Can a sandbox like this
be called safe in the web environment (ie, it can't be used to cause
real damage into the system)? Wouldn't be great if the game engine came
with other modules? For the plugin code, I'd mostly like to have at very
least XML processing (to be honest, I'd love to have CORBA too). It'd be
awesome if we could give our users some method for installing such
extensions.
Regards,
Ydea Desenvolvimento de Software LTDA.
Marcelo Coraça de Freitas
Gerente de TI
Ydea Desenvolvimento de Software LTDA.
Av. Adolfo Pinheiro, 2338 - Alto da Boa Vista
CEP.:04734-004 - São Paulo - SP
Tel.: 55-11-5523-0333
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.blender.org/pipermail/bf-committers/attachments/20080827/c5536605/attachment.htm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ydea.jpg
Type: image/jpeg
Size: 3721 bytes
Desc: not available
Url : http://lists.blender.org/pipermail/bf-committers/attachments/20080827/c5536605/attachment.jpg
More information about the Bf-committers
mailing list