Open GoogleCodeExporter opened 9 years ago
Yes, that's right, it would be a fairly safe sandbox.
The only thing I can think of to break it is:
1) while true do end -- infinite loops to break the program. This can be solved
by having another thread that monitors and kills it necessary.
2) t = {} while true do t[#t+1] = {} -- eating up memory. This is harder to
solve, so theoretically someone could attack the system by consuming all memory.
Other than that, check which functions are exposed, and consider if anyone of
them could be used to exploit anything.
Original comment by kristofer.karlsson@gmail.com
on 27 Sep 2010 at 6:02
Original issue reported on code.google.com by
ion...@gmail.com
on 27 Sep 2010 at 5:44