On Sat, Mar 17, 2001 at 02:00:40PM -0800, Ned Konz wrote:
> On Saturday 17 March 2001 07:11, David T. Lewis wrote:
> >
> > As long as UnixOSProcessPlugin.so is not in the search path, it would be
> > safe, right? Should I add an explicit check for the "secure" setting?
> 
> I don't know how much control we have over the search path for libraries; if 
> someone has added it to /etc/ld.so.conf, I suspect it's going to get found. 
> Or is there an explicit search path for libraries in Squeak?
> 
> And on other OS's (I know, OSProcess doesn't do them yet) it may be less 
> secure.
> 
> Of course, I don't know offhand how to check for the sandbox (the Unix VM 
> sources pretty much no-op the security stuff right now).

There is a global "security" variable in sqXWindow.c.

> 
> What I was concerned about is running a Squeaklet off the net that includes 
> UnixOSProcess and results in the Plugin.so getting loaded (and then damaging 
> stuff on my disk).
>

OK, I put in security checks for the primitives which fork child processes,
send signals, or kill the X display. That should be plenty safe. It will
be in the next release of OSProcess (or reply to me if you want the changes 
now).

Dave