Open lukism opened 8 years ago
You need to add a java policy, a default one can be placed at ~/.java.policy
. The most liberal one is probably https://github.com/Raynes/clojail/blob/master/example.policy and is fine if you have control over the sandbox yourself.
Any existing policy for a public bot where I don't trust people?
Well, the policy in itself is no good security wise. However, I'm pretty sure both TryClojure and lazybot uses that policy, but they use it with the secure-tester
tester in clojail.testers
, which severely limits calls a user can do. It's been battle tested for quite some time so for a bot I would argue that should be sufficient.
I was trying to make a command that evaluates clojure in sandbox and got stuck with an error
code:
error: