[plt-scheme] How to execute eval from a network udp socket?

From: Eli Barzilay (eli at barzilay.org)
Date: Thu Jul 2 11:49:15 EDT 2009

On Jul  2, Grant Rettke wrote:
> On Wed, Jul 1, 2009 at 3:33 PM, Eli Barzilay<eli at barzilay.org> wrote:
> > On Jul  1, Grant Rettke wrote:
> >> Namespaces are nicer if you want to control your environment,
> >> disallow 'exit' for example in the server code.
> >
> > No, that's a bad advice for getting "security".  It's one of
> > *many* different ways to kill scheme (for example, you could..
> 
> Come on Eli I wasn't suggesting that removing 'exit' was an
> exhaustive solution.
> 
> Is namespace the wrong place to address the concerns you listed?

Yes, that was my point -- trying to get security through a limited
namespace is a bad idea.

-- 
          ((lambda (x) (x x)) (lambda (x) (x x)))          Eli Barzilay:
                    http://barzilay.org/                   Maze is Life!


Posted on the users mailing list.