Re: PythonScript(Zope) like in a django app, any tips?

oh, I see, but the problem is that I need this scripts to be ran often and if I make a request to a sandbox, and then this sandbox send other requests to my server getting and changing data(since some scripts change the data of my server) this would take too long, and make the server unable to run in a proper speed.

Imagine playing a RPG where whenever you interact with something it just slow and then give you the response =/

If I can't figure a good way to get this thing safe in some manner, then I'll just have to limit the users that can do this, and see code by code my self...

Or make some kind of validation(human) before allowing the scripts...

But thanks for the ideia anyway, didn't know about this app engine thing.

Em sábado, 14 de abril de 2012 19h10min11s UTC-3, Andy McKay escreveu:

I would not recommend allowing untrusted users to execute random python on your server in any way.

The only sandbox ive seen that is well protected is app engine, if you are hosting your site on app engine, things might be a bit better.

I would recommend sending webhooks or callbacks to users own servers and excuting them there.

Is this what you're talking about?

https://developers.google.com/appengine/docs/python/overview

Still don't understand how this would be used.

Em sábado, 14 de abril de 2012 14h19min01s UTC-3, Andy McKay escreveu:

That's not something I'd ever recommend an untrusted user do. There
are still many ways that could go wrong. The safest execution
environment I've seen for Python is App Engine, send a callback to
that instead :)

--
You received this message because you are subscribed to the Google Groups "Django users" group.
To view this discussion on the web visit https://groups.google.com/d/msg/django-users/-/fUxBYWsIr4MJ.
To post to this group, send email to django-users@googlegroups.com.
To unsubscribe from this group, send email to django-users+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/django-users?hl=en.

--
You received this message because you are subscribed to the Google Groups "Django users" group.
To view this discussion on the web visit https://groups.google.com/d/msg/django-users/-/JyFEkJtReRUJ.
To post to this group, send email to django-users@googlegroups.com.
To unsubscribe from this group, send email to django-users+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/django-users?hl=en.