[Bf-committers] Web Plugin :: Python Sandbox

Marcelo Coraça de Freitas mfreitas at ydeasolutions.com.br
Thu Aug 28 00:03:09 CEST 2008

Howdy all,

    In a short inspection into the plugin code I found an interesting
implementation in the KX_PythonInit.cpp file: sandboxing!

    Well, not a complete sandbox but it disables the "open" function and
overwrite the "import" in such a way only trusted packages (GameLogic,
GameKeys, PhysicsConstraints, Rasterizer and Mathutils) can be imported.

   Python gurus: is this a safe/sane approach? Can a sandbox like this
be called safe in the web environment (ie, it can't be used to cause
real damage into the system)? Wouldn't be great if the game engine came
with other modules? For the plugin code, I'd mostly like to have at very
least XML processing (to be honest, I'd love to have CORBA too). It'd be
awesome if we could give our users some method for installing such


Ydea Desenvolvimento de Software LTDA.

Marcelo Coraça de Freitas 
Gerente de TI 

Ydea Desenvolvimento de Software LTDA. 
Av. Adolfo Pinheiro, 2338 - Alto da Boa Vista 
CEP.:04734-004 - São Paulo - SP 
Tel.: 55-11-5523-0333 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.blender.org/pipermail/bf-committers/attachments/20080827/c5536605/attachment.htm 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ydea.jpg
Type: image/jpeg
Size: 3721 bytes
Desc: not available
Url : http://lists.blender.org/pipermail/bf-committers/attachments/20080827/c5536605/attachment.jpg 

More information about the Bf-committers mailing list