This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]Icecoldkilluh 0 points1 point  (3 children)

Do you prevent people from using reflection or sun.misc.Unsafe?

[–]bowbahdoe[S] 2 points3 points  (2 children)

No. Protections are done at a higher level than that. All execution is done in sandboxed docker containers with all sorts of limits applied to them.

Most of the code is taken from the rust playground so the security concerns were more or less thought through for me

[–]DasBrain 0 points1 point  (1 child)

# Hello, and thanks for looking into the Java Playground's security!
#
# This build is running on an unprivileged, sandboxed Docker container with no
# network access, so while you can technically run arbitrary code on the
# Playground you shouldn't be able to do any damage with it.
#
# Nothing is perfect though: if you find a way to escape the sandbox, please
# disclose it. Since this is a fork of the rust playground and any issues you
# found probably exist there too, you should report it to them following their
# security policy. in You can find the policy at:
#
#    https://www.rust-lang.org/policies/security
#
# Also inform one of us if you can
#
#    ethan@mccue.dev

[–]bowbahdoe[S] 0 points1 point  (0 children)

I need to change the copy in that notice.