tags:

views:

70

answers:

2
Q: 

Limiting the features of an embedded python instance

Is there a way to limit the abilities of python scripts running under an embedded interpretor? Specifically I wish to prevent the scripts from doing things like the following:

  • Importing python extension modules (ie .pyd modules), except those specifically allowed by the application.
  • Manipulating processes in any way (ie starting new processes, or terminating the application).
  • Any kind of networking.
  • Manipulating the file system (eg creating, modifying and deleting files).
+2  A: 

No. There's no easy way to prevent those things on CPython. Your options are:

  1. Edit CPython source code and remove things you don't want - provide mocking methods for all those things. Very error-prone and hard to do. This is the approach of Google's App Engine.
  2. Use Restricted Python. However, with it you can't prevent your user from exhausting the memory available or running infinite eat-all-cpu loops.
  3. Use another python implementation. PyPy has a sandbox mode you can use. Jython runs under java and I guess java can be sandboxed.
nosklo  2010-01-05 12:49:10
Well I'm not to worried about scripts crashing/freezing the application, more when a hostile plug-in say downloads and executes a file from the internet, changes system settings, etc. I guess I could edit the CPython implementation, for some things I guess just not compiling the module to start with will be suitable, and if I guess I could hook the module loader to check a whitelist of safe pyd modules.Is there any info around somewhere on simply removing modules/objects from the python compile?
Fire Lancer  2010-01-05 14:03:27
A: 

Maybe this can be helpful. You have an example provided on how to work with the ast.

Geo  2010-01-05 12:57:29
"ACCESS DENIED", I really hate colleges internet restrictions...will check this later when I get home.
Fire Lancer  2010-01-05 13:59:07

related questions

any good tool for makefile generation?
How do you pass a function as a parameter in C?
Where should a veteran C programmer start in order to master Java ?
Any good book on best practice and guidelines in developing a SDK in C?
How do you determine the size of a file in C?
Decoding printf statements in C (Printf Primer)
Shift operator in C
How to avoid redefining VERSION, PACKAGE, etc.
Alpha blending sprites in Nintendo DS Homebrew
When should I use type abstraction in embedded systems
How to implement continuations?
What are the barriers to understanding pointers and what can be done to overcome them?
Anyone have experience creating a shared library in MATLAB?
String.indexOf function in C
Passing multidimensional arrays as function arguments in C
C/C++ library for reading MIDI signals from a USB MIDI device
Choosing a static code analysis tool
How do you printf an unsigned long long int?
Good STL-like library for C.
Rockbox audio format
Why am I getting a malloc: double free error with realloc()?
Should I learn C?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS