From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Original-To: poffice@blade.nagaokaut.ac.jp Delivered-To: poffice@blade.nagaokaut.ac.jp Received: from kankan.nagaokaut.ac.jp (kankan.nagaokaut.ac.jp [133.44.2.24]) by blade.nagaokaut.ac.jp (Postfix) with ESMTP id F129C17C71D6 for ; Mon, 16 Apr 2012 03:39:30 +0900 (JST) Received: from funfun.nagaokaut.ac.jp (smtp.nagaokaut.ac.jp [133.44.2.201]) by kankan.nagaokaut.ac.jp (Postfix) with ESMTP id C679BEA6F87 for ; Mon, 16 Apr 2012 03:21:39 +0900 (JST) Received: from localhost (localhost.nagaokaut.ac.jp [127.0.0.1]) by funfun.nagaokaut.ac.jp (Postfix) with ESMTP id B841E8FC2D for ; Mon, 16 Apr 2012 03:21:39 +0900 (JST) X-Virus-Scanned: amavisd-new at funfun.nagaokaut.ac.jp Received: from funfun.nagaokaut.ac.jp ([127.0.0.1]) by localhost (funfun.nagaokaut.ac.jp [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iJvy8fguukap for ; Mon, 16 Apr 2012 03:21:39 +0900 (JST) Received: from voscc.nagaokaut.ac.jp (voscc.nagaokaut.ac.jp [133.44.1.100]) by funfun.nagaokaut.ac.jp (Postfix) with ESMTP id 9795F8FC26 for ; Mon, 16 Apr 2012 03:21:39 +0900 (JST) Received: from carbon.ruby-lang.org (unknown [221.186.184.68]) by voscc.nagaokaut.ac.jp (Postfix) with ESMTP id 619AB952602 for ; Mon, 16 Apr 2012 03:21:39 +0900 (JST) Received: from beryllium.ruby-lang.org (beryllium.ruby-lang.org [127.0.0.1]) by carbon.ruby-lang.org (Postfix) with ESMTP id D0AE13C21E7BF; Mon, 16 Apr 2012 03:21:36 +0900 (JST) Received: from fluorine.ruby-lang.org (www.rubyist.net [210.251.121.216]) by carbon.ruby-lang.org (Postfix) with ESMTP id 8E2B53C21EBB0 for ; Mon, 16 Apr 2012 03:21:31 +0900 (JST) Received: from ruby-lang.org (localhost [127.0.0.1]) by fluorine.ruby-lang.org (Postfix) with ESMTP id 750B63ED20 for ; Mon, 16 Apr 2012 03:21:31 +0900 (JST) Delivered-To: ruby-core@ruby-lang.org Date: Mon, 16 Apr 2012 03:21:31 +0900 Posted: Mon, 16 Apr 2012 03:21:31 +0900 From: "headius (Charles Nutter)" Reply-To: ruby-core@ruby-lang.org Subject: [ruby-core:44369] [ruby-trunk - Feature #5455] $SAFE should be removed To: ruby-core@ruby-lang.org Message-Id: References: X-ML-Name: ruby-core X-Mail-Count: 44369 X-MLServer: fml [fml 4.0.3 release (20011202/4.0.3)]; post only (only members can post) X-ML-Info: If you have a question, send e-mail with the body "help" (without quotes) to the address ruby-core-ctl@ruby-lang.org; help= X-Mailer: Redmine X-Spam-Checker-Version: SpamAssassin 3.1.7-deb3 (2006-10-05) on carbon.ruby-lang.org X-Spam-Level: X-Spam-Status: No, score=0.1 required=7.0 tests=BAYES_50,CONTENT_TYPE_PRESENT, FORGED_RCVD_HELO,X_MAILER_PRESENT autolearn=disabled version=3.1.7-deb3 X-Redmine-Issue-Author: kosaki X-Auto-Response-Suppress: OOF X-Redmine-Issue-Id: 5455 X-Redmine-Mailinglistintegration-Message-Ids: 14413 X-Redmine-Project: ruby-trunk Auto-Submitted: auto-generated X-Redmine-Site: Ruby Issue Tracking System X-Redmine-Host: bugs.ruby-lang.org Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Precedence: bulk List-Id: ruby-core.ruby-lang.org List-Software: fml [fml 4.0.3 release (20011202/4.0.3)] List-Post: List-Owner: List-Help: List-Unsubscribe: Issue #5455 has been updated by headius (Charles Nutter). My plan at the moment (in rough form) is to break out the individual restrictions the SAFE levels are intended to govern and allow controlling them via Java security policies. I already implemented one as a prototype, to permit evauation of code (Java security policies are whitelists, not blacklists...another reason they do a good job of security): https://github.com/headius/jruby/commit/b8f17f21f083207612bc234ab022b2a07a9b5e11 It should be possible to implement all the SAFE security restrictions this way, but the result will be more flexible (since users can mix and match features), more explicit, and in JRuby's case part of standard Java security policy management. I would suggest that Ruby 2.0 put together a list of all restricted operations and form a similar security system to the JVM. I am willing to help with that. ---------------------------------------- Feature #5455: $SAFE should be removed https://bugs.ruby-lang.org/issues/5455#change-25916 Author: kosaki (Motohiro KOSAKI) Status: Open Priority: Normal Assignee: Category: Target version: 3.0 see [ruby-dev:44554] [ruby-dev:44572] -- http://bugs.ruby-lang.org/