[kepler-dev] actor whitelist/blacklist
Edward A. Lee
eal at eecs.berkeley.edu
Fri Aug 29 07:52:08 PDT 2008
Ptolemy II can be started in the Java sandbox... E.g.:
vergil -sandbox
This in fact results in a bunch of error messages and exceptions,
indicating that vergil is doing things (like reading user files ---
preference data and libraries) that are not allowed... But you
can run models, etc.
Edward
At 05:29 AM 8/29/2008, Paul Allen wrote:
>I'm wondering if anybody has come up with a black list of actors that represent major security issues when running on remote systems? E.g., the command line actor represents a major security issue. Likewise I'd guess that the R actor is a security threat since I suspect that there is also an R function that gives access to the command line.
>
>Conversely, maybe someone has come up with an actor white list that represent safe actors?
>
>Or am I taking the wrong approach when thinking about this? Maybe the way to do things is using Java security policies?
>
>Thanks,
>-Paul
>
>
>
>
>_______________________________________________
>Kepler-dev mailing list
>Kepler-dev at ecoinformatics.org
>http://mercury.nceas.ucsb.edu/ecoinformatics/mailman/listinfo/kepler-dev
>
------------
Edward A. Lee
Robert S. Pepper Distinguished Professor
EECS Dept., 545Q Cory Hall, UC Berkeley, Berkeley, CA 94720-1770
phone: 510-643-3728, fax: 510-642-5745
eal at eecs.Berkeley.EDU, http://www.eecs.berkeley.edu/Faculty/Homepages/lee.html
More information about the Kepler-dev
mailing list