[Zope-dev] Re: RestrtrictedPython vs zope.security.untrustedpython
Chris Withers
chris at simplistix.co.uk
Tue Nov 20 05:54:26 EST 2007
Martijn Faassen wrote:
> There will be a problem if proxies get into subsystems without any
> security declarations. Most security policies should forbid access in
> that case.
>
> You might be surprised how many things you'll need to add security
> declarations for. In my experience this seriously kills development
> speed early on in the project.
I haven't decided what security policy I'll be using yet, so this may or
may not be a problem ;-)
As an aside, has anyone built something like an interactive shell that
runs with the restricted compiler?
cheers,
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
More information about the Zope-Dev
mailing list