<!-- MHonArc v2.4.4 -->
<!--X-Subject: [MUD-Dev] Re: Scripting Design Notes -->
<!--X-From-R13: Hnqvz Fxnpuraxb <igNserrubyq.pebpbqvyr.bet> -->
<!--X-Date: Sun, 19 Jul 1998 22:06:49 -0700 -->
<!--X-Message-Id: 35B2C88A.AAF169E0#freehold,crocodile.org -->
<!--X-Content-Type: text/plain -->
<!--X-Reference: 199807192001.OAA02027@ami-cg.GraySage.Edmonton.AB.CA -->
<!--X-Head-End-->
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<html>
<head>
<title>MUD-Dev message, [MUD-Dev] Re: Scripting Design Notes</title>
<!-- meta name="robots" content="noindex,nofollow" -->
<link rev="made" href="mailto:vt#freehold,crocodile.org">
</head>
<body background="/backgrounds/paperback.gif" bgcolor="#ffffff"
text="#000000" link="#0000FF" alink="#FF0000" vlink="#006000">
<font size="+4" color="#804040">
<strong><em>MUD-Dev<br>mailing list archive</em></strong>
</font>
<br>
[ <a href="../">Other Periods</a>
| <a href="../../">Other mailing lists</a>
| <a href="/search.php3">Search</a>
]
<br clear=all><hr>
<!--X-Body-Begin-->
<!--X-User-Header-->
<!--X-User-Header-End-->
<!--X-TopPNI-->
Date:
[ <a href="msg00264.html">Previous</a>
| <a href="msg00266.html">Next</a>
]
Thread:
[ <a href="msg00260.html">Previous</a>
| <a href="msg00270.html">Next</a>
]
Index:
[ <A HREF="author.html#00265">Author</A>
| <A HREF="#00265">Date</A>
| <A HREF="thread.html#00265">Thread</A>
]
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
<H1>[MUD-Dev] Re: Scripting Design Notes</H1>
<HR>
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
<UL>
<LI><em>To</em>: <A HREF="mailto:mud-dev#kanga,nu">mud-dev#kanga,nu</A></LI>
<LI><em>Subject</em>: [MUD-Dev] Re: Scripting Design Notes</LI>
<LI><em>From</em>: Vadim Tkachenko <<A HREF="mailto:vt#freehold,crocodile.org">vt#freehold,crocodile.org</A>></LI>
<LI><em>Date</em>: Sun, 19 Jul 1998 23:33:14 -0500</LI>
<LI><em>Reply-To</em>: <A HREF="mailto:mud-dev#kanga,nu">mud-dev#kanga,nu</A></LI>
</UL>
<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<HR>
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
<PRE>
Chris Gray wrote:
>
> [Mike L Kesl:]
>
> >I am considering using jPython <<A HREF="http://www.python.org">http://www.python.org</A>>. The other
> >consideration is to allow contributors to use java in a secure way
> >using a hard coded api of appropriate scripting functions. I think
> >something that is purely interpreted would be nice, but I am not sure
> >if that is theoretically possible in a purely platform independent
> >project, unless of course if the interpreter is written in java, which
> >could mean a class library in the case of jPython, I am not sure.
> >Otherwise we would have to write our own interpreter for the java
> >method. This method would really only try to compile the script, making
> >the java runtime environment do most of the work. More investigation of
> >Java Python is necessary, and perhaps other languages.
>
> Well, if you use Java, your scripting language *is* portable, but likely
> more powerful than you want. Where will the scripted code run? Most
> likely in the server, in which case things like all of 'awt' should
> be disallowed. Likely also all of the IO stuff. You could take the
> Java source they write and wrap it inside some special stuff that
> imports a bunch of utility routines that you *do* want them to be able
> to use, then compile the result.
Java has a concept of a security manager - you can write your own and
install it underneath your code - ONCE. Anyone who will try to do it
second time will be shot on sight, I mean will get the
SecurityException.
The granulation of the security manager is up to the implementor, so you
may [dis]allow whatever you want.
Thus, your system is safe from the user[s]. Not your server runtime
process, though.
> However, you are still vulnerable.
Can you please elaborate on that?
> Chris Gray cg#ami-cg,GraySage.Edmonton.AB.CA
--
Still alive and smile stays on,
Vadim Tkachenko <vt#freehold,crocodile.org>
--
UNIX _is_ user friendly, he's just very picky about who his friends are
</PRE>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<HR>
<!--X-Follow-Ups-End-->
<!--X-References-->
<UL><LI><STRONG>References</STRONG>:
<UL>
<LI><STRONG><A NAME="00260" HREF="msg00260.html">[MUD-Dev] Re: Scripting Design Notes</A></STRONG>
<UL><LI><EM>From:</EM> Chris Gray <cg#ami-cg,GraySage.Edmonton.AB.CA></LI></UL></LI>
</UL></LI></UL>
<!--X-References-End-->
<!--X-BotPNI-->
<UL>
<LI>Prev by Date:
<STRONG><A HREF="msg00264.html">[MUD-Dev] Re: DBMS in MU*'s</A></STRONG>
</LI>
<LI>Next by Date:
<STRONG><A HREF="msg00266.html">[MUD-Dev] Re: Scripting Design Notes</A></STRONG>
</LI>
<LI>Prev by thread:
<STRONG><A HREF="msg00260.html">[MUD-Dev] Re: Scripting Design Notes</A></STRONG>
</LI>
<LI>Next by thread:
<STRONG><A HREF="msg00270.html">[MUD-Dev] Re: Scripting Design Notes</A></STRONG>
</LI>
<LI>Index(es):
<UL>
<LI><A HREF="index.html#00265"><STRONG>Date</STRONG></A></LI>
<LI><A HREF="thread.html#00265"><STRONG>Thread</STRONG></A></LI>
</UL>
</LI>
</UL>
<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
<ul><li>Thread context:
<BLOCKQUOTE><UL>
<LI><STRONG>[MUD-Dev] Re: DBMS in MU*'s</STRONG>, <EM>(continued)</EM>
<ul compact>
<ul compact>
<LI><strong><A NAME="00282" HREF="msg00282.html">[MUD-Dev] Re: DBMS in MU*'s</A></strong>,
s001gmu <a href="mailto:s001gmu#nova,wright.edu">s001gmu#nova,wright.edu</a>, Tue 21 Jul 1998, 20:26 GMT
<UL>
<LI><strong><A NAME="00289" HREF="msg00289.html">[MUD-Dev] Re: DBMS in MU*'s</A></strong>,
Adam Wiggins <a href="mailto:adam#angel,com">adam#angel,com</a>, Tue 21 Jul 1998, 22:27 GMT
</LI>
</UL>
</LI>
</ul>
<LI><strong><A NAME="00672" HREF="msg00672.html">[MUD-Dev] Re: DBMS in MU*'s</A></strong>,
Chris Gray <a href="mailto:cg#ami-cg,GraySage.Edmonton.AB.CA">cg#ami-cg,GraySage.Edmonton.AB.CA</a>, Wed 12 Aug 1998, 03:48 GMT
</LI>
</ul>
</LI>
<LI><strong><A NAME="00260" HREF="msg00260.html">[MUD-Dev] Re: Scripting Design Notes</A></strong>,
Chris Gray <a href="mailto:cg#ami-cg,GraySage.Edmonton.AB.CA">cg#ami-cg,GraySage.Edmonton.AB.CA</a>, Sun 19 Jul 1998, 20:02 GMT
<UL>
<LI><strong><A NAME="00265" HREF="msg00265.html">[MUD-Dev] Re: Scripting Design Notes</A></strong>,
Vadim Tkachenko <a href="mailto:vt#freehold,crocodile.org">vt#freehold,crocodile.org</a>, Mon 20 Jul 1998, 05:06 GMT
</LI>
<LI><strong><A NAME="00270" HREF="msg00270.html">[MUD-Dev] Re: Scripting Design Notes</A></strong>,
Jo Dillon <a href="mailto:emily#thelonious,new.ox.ac.uk">emily#thelonious,new.ox.ac.uk</a>, Mon 20 Jul 1998, 18:19 GMT
</LI>
</UL>
<UL>
<li><Possible follow-up(s)><br>
<LI><strong><A NAME="00266" HREF="msg00266.html">[MUD-Dev] Re: Scripting Design Notes</A></strong>,
Chris Gray <a href="mailto:cg#ami-cg,GraySage.Edmonton.AB.CA">cg#ami-cg,GraySage.Edmonton.AB.CA</a>, Mon 20 Jul 1998, 06:11 GMT
</LI>
</UL>
</LI>
<LI><strong><A NAME="00254" HREF="msg00254.html">[MUD-Dev] Login and Accounts</A></strong>,
Mike L Kesl <a href="mailto:mlkesl#cpinternet,com">mlkesl#cpinternet,com</a>, Sun 19 Jul 1998, 13:50 GMT
<UL>
<LI><strong><A NAME="00294" HREF="msg00294.html">[MUD-Dev] RE: Login and Accounts</A></strong>,
Matt Chatterley <a href="mailto:matt#mpc,dyn.ml.org">matt#mpc,dyn.ml.org</a>, Wed 22 Jul 1998, 00:41 GMT
</LI>
</UL>
</LI>
</UL></BLOCKQUOTE>
</ul>
<hr>
<center>
[ <a href="../">Other Periods</a>
| <a href="../../">Other mailing lists</a>
| <a href="/search.php3">Search</a>
]
</center>
<hr>
</body>
</html>