[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Security models in mzscheme ?? [Was: Scheme interpreter with web interface?]

To: Shriram Krishnamurthi <sk@cs.brown.edu>
Subject: Security models in mzscheme ?? [Was: Scheme interpreter with web interface?]
From: John Casu <casuj@valinux.com>
Date: Sat, 2 Dec 2000 11:59:09 -0800 (PST)
CC: plt-scheme@fast.cs.utah.edu
In-Reply-To: <200012021523.KAA29436@bosch.cs.brown.edu> from Shriram Krishnamurthiat "Dec 2, 2000 10:23:35 am"
Sender: owner-plt-scheme@fast.cs.utah.edu

> 
> You will also find the _threads_ and _custodians_ built into PLT
> Scheme extremely useful for this task, to enforce timeouts and to
> gather up resources allocated by the user's program.
> 
> The security risks of doing this are massive.  Be sure you know what
> you're doing.

How would one go about adding a security model to mzscheme, so that you
could run your cgi/scheme code in a sandbox ?

Specifically, given a granted authority, I'd like to be able to create a 
new process, with a different capability or user/group id, to the parent.

I'm interested in building a scheme machine using the mzscheme/oskit
combo, and I'd like to make that a multiuser system.

thanks,

john c.

Follow-Ups:
- Re: Security models in mzscheme ??
  - From: Paul Graunke <ptg@cs.rice.edu>

References:
- Scheme interpreter with web interface ?
  - From: Shriram Krishnamurthi <sk@cs.brown.edu>

Prev by Date: Scheme interpreter with web interface ?
Next by Date: Re: Security models in mzscheme ??
Prev by thread: Scheme interpreter with web interface ?
Next by thread: Re: Security models in mzscheme ??
Index(es):
- Date
- Thread