<div class="gmail_quote">2012/1/28 Gastón Dall&#39; Oglio <span dir="ltr">&lt;<a href="mailto:gaston.dalloglio@gmail.com">gaston.dalloglio@gmail.com</a>&gt;</span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div>Laurent, just for curiosity, in FreeBSD I know that existing Jails, do you use FreeBSD jails?</div><div><a href="http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails.html" target="_blank">http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails.html</a></div>

</blockquote><div><br></div><div>No. I have not booted a FreeBSD for years ..... </div><div><br></div><div>Laurent</div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div><div></div><div class="h5">
<br><div class="gmail_quote">2012/1/25 laurent laffont <span dir="ltr">&lt;<a href="mailto:laurent.laffont@gmail.com" target="_blank">laurent.laffont@gmail.com</a>&gt;</span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">


<div class="gmail_quote"><div><div>On Tue, Jan 24, 2012 at 2:42 PM, Nick Ager <span dir="ltr">&lt;<a href="mailto:nick.ager@gmail.com" target="_blank">nick.ager@gmail.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">




<div class="gmail_quote"><div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Ce n&#39;est pas si facile que ça.<br>
<br>
(1 perform: (&#39;cla&#39;, &#39;ss&#39;) asSymbol) environment at: (&#39;Comp&#39;, &#39;iler&#39;) asSymbol<br>
<br>
And again, you give the web app user the full rights of the OS user<br>
that runs the image. Deleting the code that owned you after the<br>
session times out doesn&#39;t solve a thing once you&#39;ve been owned. It<br>
also doesn&#39;t help if two users at the same time want to work on a<br>
class named &#39;Test&#39; or &#39;MyClass&#39; or &#39;Example&#39;.<br></blockquote><div><br></div></div><div>you could always use chroot [1] and isolate each web app user&#39;s environment.</div><div><br></div><div>[1] <a href="http://en.wikipedia.org/wiki/Chroot" target="_blank">http://en.wikipedia.org/wiki/Chroot</a></div>





</div>
<br></blockquote><div><br></div></div></div><div>On SmallHarbour we use a secured VM so each image run in a &quot;jail&quot; and cannot access filesystem out of its root dir. There&#39;s some (ugly / hacky) automated image deployment. If someone want to play with I can help.</div>


<span><font color="#888888">

<div><br></div><div>Laurent</div></font></span><div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">_______________________________________________<br>



seaside mailing list<br>
<a href="mailto:seaside@lists.squeakfoundation.org" target="_blank">seaside@lists.squeakfoundation.org</a><br>
<a href="http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside" target="_blank">http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside</a><br>
<br></blockquote></div></div><br>
<br>_______________________________________________<br>
seaside mailing list<br>
<a href="mailto:seaside@lists.squeakfoundation.org" target="_blank">seaside@lists.squeakfoundation.org</a><br>
<a href="http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside" target="_blank">http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside</a><br>
<br></blockquote></div><br>
</div></div><br>_______________________________________________<br>
seaside mailing list<br>
<a href="mailto:seaside@lists.squeakfoundation.org">seaside@lists.squeakfoundation.org</a><br>
<a href="http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside" target="_blank">http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside</a><br>
<br></blockquote></div><br>