Re: Lisp security

From: Cameron MacKinnon <cmackin+nn@xxxxxxxxxxxxx>
Date: Mon, 31 Oct 2005 09:41:54 -0500

John Thingstad wrote:

Obviously Lisp is not prone to buffer overfow controls. (unless optimations turn bounds checking off) But there is the question of Java.final. Apperaently there is no equivalence in Lisp. Simularly there is the possibility to change inheritance after runtime. Also decaring code after runtime. Obviously if you get trough the outer defenses Lisp is chanseless. Any chance of anyone (Allegro) deveoping a 'sandbox' for lisp?

What is your threat model? Do you allow users to add Lisp code to your system, and want them limited to a safe subset? Or are you worried about what is ostensibly user provided data breaching the code/data boundary (a la buffer overflow)? .

Follow-Ups:
- Re: Lisp security
  - From: John Thingstad
- Re: Lisp security
  - From: John Thingstad

References:
- Lisp security
  - From: John Thingstad

Prev by Date: Re: diff. betw. equal and eq on simbols
Next by Date: Re: diff. betw. equal and eq on simbols
Previous by thread: Re: Lisp security
Next by thread: Re: Lisp security
Index(es):
- Date
- Thread

Relevant Pages

Re: C++ to CLOS mapping
... John Thingstad ... On the PlayStation 2 we were programming in our own unique language ... Assembly Lisp. ... MIT graduate, I'm probably showing too much of my geek cred, MIT and ...
(comp.lang.lisp)
Re: C++ to CLOS mapping
... John Thingstad ... So, but lisp is just an obsolete language nobody uses, right? ... tell that to everyone so nobody get the stupid idea to actually use it. ... If you want to tell people that they are stupid to suggest lisp can be ...
(comp.lang.lisp)
Re: Practical Common Lisp: Whats Next?
... "John Thingstad" writes: ... > Well one thing you have completely left out is optimizing lisp. ... I definitely plan to mention the basics in the conclusion--to ... make Lisp code go fast you need to profile, fix your algorithms, and ...
(comp.lang.lisp)
Re: Lisp security
... optimations turn bounds checking off) ... Apperaently there is no equivalence in Lisp. ... Simularly there is the possibility to change inheritance after runtime. ... Obviously if you get trough the outer defenses Lisp is chanseless. ...
(comp.lang.lisp)
Re: Lisp security
... optimations turn bounds checking off) ... Apperaently there is no equivalence in Lisp. ... Simularly there is the possibility to change inheritance after runtime. ... Obviously if you get trough the outer defenses Lisp is chanseless. ...
(comp.lang.lisp)