[prev in list] [next in list] [prev in thread] [next in thread]
List: python-list
Subject: Re: Embedding a restricted python interpreter
From: Craig Ringer <craig () postnewspapers ! com ! au>
Date: 2005-01-07 5:56:26
Message-ID: 1105077385.28776.69.camel () rasputin ! localnet
[Download RAW message or body]
On Thu, 2005-01-06 at 23:40, Steve Holden wrote:
> Jp Calderone wrote:
>
> [...]
> >
> >
> > A Python sandbox would be useful, but the hosting provider's excuse
> > for not allowing you to use mod_python is completely bogus. All the
> > necessary security tools for that situation are provided by the
> > platform in the form of process and user separation.
>
> Not sure this is strictly true: mod_python gets loaded into the server's
> address space and gives the ability to add any type of handler. While
> Apache might well be able to respawn failed subprocesses, it's not
> something that most hosting providers would like to have to do all the
> time for many hosted sites.
I wonder if SCGI or a similar "persistent CGI" solution might be more
practical for running CGI scripts under specific user accounts.
--
Craig Ringer
--
http://mail.python.org/mailman/listinfo/python-list
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic