Re: Security

From: "Alex Mizrahi" <udodenko@xxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 31 Jan 2008 10:39:34 +0200

So> So, is there an equivalent type of problem with Lisp? The only
So> thing I can think of is to be careful of code-injection type problems
So> where evaluating s-expressions from an untrusted source could be
So> harmful. But that's pretty obvious.

even w/o eval, people can make DoS attack interning too many symbols,
starving server's memory.
so doing READ is tricky

.

References:
- Security
  - From: Steve-o

Prev by Date: Re: questions: how to load a file "inlined" inside a let, and how to reference count objects
Next by Date: Re: questions: how to load a file "inlined" inside a let, and how to reference count objects
Previous by thread: Re: Security
Next by thread: Re: Security
Index(es):
- Date
- Thread

Relevant Pages

Re: Security
... be careful not to allow buffer overrun's to occur. ... how this could be a problem in Lisp. ... thing I can think of is to be careful of code-injection type problems ...
(comp.lang.lisp)
Security
... with C/C++ programs you have to ... be careful not to allow buffer overrun's to occur. ... how this could be a problem in Lisp. ... thing I can think of is to be careful of code-injection type problems ...
(comp.lang.lisp)