[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Chicken-users] Packaging libraries securely
From: |
felix winkelmann |
Subject: |
Re: [Chicken-users] Packaging libraries securely |
Date: |
Thu, 9 Aug 2007 08:57:13 +0200 |
On 8/8/07, felix winkelmann <address@hidden> wrote:
>
> The sandbox egg will be the only thing that gives a bit of security, but
> it provides only a very basic Scheme dialect and is pretty slow.
> The only (somewhat brute-forcish) solution that comes to mind is
> to compile to a static executable and hack somethhing together with
> rlimit and chroot(1).
Do'h - to be safe you want to compile it in a chroot too - expansion/compile-
time code might break as well...
cheers,
felix