[z3-five] Unexpectedly unprotected code
Chris McDonough
chrism at plope.com
Thu Feb 1 16:47:10 CET 2007
On Feb 1, 2007, at 10:41 AM, Paul Winkler wrote:
>
> On Wed, Jan 31, 2007 at 08:22:16PM +0000, Chris Withers wrote:
>> Paul Winkler wrote:
>>> Hmm, was that really a big draw to Zope?
>>
>> When Zope was growing rapidly (1999-2003 for me, others may disagree)
>> everyone who came to Zope came to it by installing it and writing TTW
>> code. That was predicated on what I'm talking about ;-)
>
> Yeah, but nowhere is it written in stone that the security model of
> TTW code needs to be different than the security model of filesystem
> code. I'm heretically suggesting that we consider whether this
> distinction does more harm than good. For a trivial example, the old
> "import re is not allowed" FAQ. IIRC the motivation for disallowing
> re is that regular expressions can be indeterminately slow and a naive
> scripter might create code that's an easy DOS target - or a malicious
> scripter might do so deliberately. In that case at least, I'm now
> pretty firmly on the side of "give 'em the rope and if they hang
> themselves, it's their own problem".
FTR, I'm in the camp of "lets just have one programming model"...
http://www.plope.com/Members/chrism/ttb_programming
FWIW, I haven't yet used "grok" but from what I've seen of it, it
seems consistent with the ideas in that blog entry.
- C
More information about the z3-five
mailing list