[Pharo-project] Issue 3188 in pharo: do we need SecurityManager?

pharo at googlecode.com pharo at googlecode.com
Sun Apr 17 00:00:29 CEST 2011


Comment #4 on issue 3188 by siguc... at gmail.com: do we need SecurityManager?
http://code.google.com/p/pharo/issues/detail?id=3188

There are certain primitives which controlling VM security plugin
	self flushSecurityKeys.
	self disableFileAccess.
	self disableImageWrite.
	"self disableSocketAccess."

IMO the whole security features should be reviewed.
In new Cog VMs i added a new primitive(s) which can disable loading plugins  
(including internal ones). So, for sandboxing, one could simply run this  
primitive so, no other plugins (except already loaded ones) can be used for  
the rest of the session.





More information about the Pharo-project mailing list