Hi,

In message "[ruby-talk:8829] Sandbox (again)"
    on 01/01/08, Clemens Wyss <wys / helbling.ch> writes:

|As you can see 'system' and 'require' are not accessible, all the "rest"
|is. Also, tainted level is set to 2 (by default). The print method is
|only overloaded in order to fetch the "print" statements in the
|eval-uated code. Now I am pretty sure that I missed some "security
|holes". Could you therefore please comment on this proposal. 

Well, there are e.g.

  Kernel.print

The level 3 of $SAFE is just designed for your purpose.  If hole
remains, it's my fault, not yours. ;-)

|Clemens (the other ;-))

Ruby may attract persons with this particular name.

							matz.