Re: Sharing scripts

help-octave

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Sharing scripts

From:	MathCloud
Subject:	Re: Sharing scripts
Date:	Sat, 13 Mar 2010 02:03:09 -0800 (PST)

Very useful information, thank you, the system should now be safe(r).
I have gone through the documentation and filtered out anything that looks
potentially dangerous, apart from the commands that you have mentioned.

I hope that you sign up and test this, it is now open to anybody although it
is not finished yet. I think that especially the file sharing is a good
service. Upload some m-files and/or mat-files and click "Current Directory"
to check it out. When you click on "share" for a file, it can immediately be
used by others. If you change your mind or you want to update the shared
file, click "unshare". When you want to look at files that others have
shared, go the "Script Editor" where you can open files that others have
shared.

Anders Movert
MathCloud.se

Francesco Potortì wrote:
> 
>>Maybe other might be able to think of some attacks that will help you 
>>protect your Octave web server.
> 
> Generally speaking, an interpreter like Octave is not a thing that
> should be left open for running arbitrary things on a server, unless you
> are very careful about what you disable by redefining them as empty or
> generating an error.
> 
> Apart from all file-related commands, probably including "source", and
> all system-related commands like those already mentioned, you should
> probably impose limits on cpu and memory consumption by using ulimit on
> Unix and running the interpreter as a user with low privileges.  A
> chroot environment would give you additional protection against
> unforeseen weaknesses of the interpreter.  All in all, not something
> that should be done lightly :)
> 
> -- 
> Francesco Potortì (ricercatore)        Voice: +39 050 315 3058 (op.2111)
> ISTI - Area della ricerca CNR          Fax:   +39 050 315 2040
> via G. Moruzzi 1, I-56124 Pisa         Email: address@hidden
> (entrance 20, 1st floor, room C71)     Web:   http://fly.isti.cnr.it/
> _______________________________________________
> Help-octave mailing list
> address@hidden
> https://www-old.cae.wisc.edu/mailman/listinfo/help-octave
> 
> 

-- 
View this message in context: 
http://old.nabble.com/Sharing-scripts-tp27847186p27886685.html
Sent from the Octave - General mailing list archive at Nabble.com.

[Prev in Thread]

Current Thread

[Next in Thread]

Sharing scripts, MathCloud, 2010/03/10
- Re: Sharing scripts, David Bateman, 2010/03/10
  - Message not available
    - Re: Sharing scripts, David Bateman, 2010/03/12
    - Re: Sharing scripts, Francesco Potortì, 2010/03/12
    - Re: Sharing scripts, MathCloud <=
- Re: Sharing scripts, Jaroslav Hajek, 2010/03/11
- Re: Sharing scripts, Michael Creel, 2010/03/13
- Re: Sharing scripts, Søren Hauberg, 2010/03/13
  - Re: Sharing scripts, Sergei Steshenko, 2010/03/13
    - Re: Sharing scripts, Søren Hauberg, 2010/03/13
    - Re: Sharing scripts, Sergei Steshenko, 2010/03/13
    - Re: Sharing scripts, George Kousiouris, 2010/03/14
  - Re: Sharing scripts, MathCloud, 2010/03/14
    - Re: Sharing scripts, Jaroslav Hajek, 2010/03/15
    - Re: Sharing scripts, MathCloud, 2010/03/15

Prev by Date: Re: kernel density smoother?
Next by Date: Re: Sharing scripts
Previous by thread: Re: Sharing scripts
Next by thread: Re: Sharing scripts
Index(es):
- Date
- Thread