File tree 1 file changed +10
-1
lines changed
1 file changed +10
-1
lines changed Original file line number Diff line number Diff line change @@ -5,7 +5,6 @@ \section{\module{rexec} ---
55\modulesynopsis {Basic restricted execution framework.}
66
77
8-
98This module contains the \class {RExec} class, which supports
109\method {r_eval()}, \method {r_execfile()}, \method {r_exec()}, and
1110\method {r_import()} methods, which are restricted versions of the standard
@@ -15,6 +14,16 @@ \section{\module{rexec} ---
1514only have access to modules and functions that are deemed safe; you
1615can subclass \class {RExec} to add or remove capabilities as desired.
1716
17+ \strong {Warning:}
18+ While the \module {rexec} module is designed to perform as described
19+ below, it does have a few known vulnerabilities which could be
20+ exploited by carefully written code. Thus it should not be relied
21+ upon in situations requiring `` production ready''
22+ situations, execution via sub-processes or very careful `` cleansing''
23+ of both code and data to be processed may be necessary.
24+ Alternatively, help in patching known \module {rexec} vulnerabilities
25+ would be welcomed.
26+
1827\emph {Note: } The \class {RExec} class can prevent code from performing
1928unsafe operations like reading or writing disk files, or using TCP/IP
2029sockets. However, it does not protect against code using extremely
You can’t perform that action at this time.
0 commit comments