apfritts has asked for the wisdom of the Perl Monks concerning the following question:

So I need to allow users to use a whole lot of perl functionality, however, I don't want them to have access to additional libraries, the "move", "unlink", "system", "exec", etc. functions and I need to provide them with predefined variables and wrappers to the above subroutines. Has anyone done this before? How did you do it?
A government big enough to give you everything you want, is strong enough to take everything you have. - Thomas Jefferson

Replies are listed 'Best First'.
Re: perl sandboxing
by moritz (Cardinal) on Nov 02, 2009 at 23:44 UTC
    There's Safe, a core module that restricts opcodes. It seems to work, but I don't know how safe it really is.

    I know that buubot allows execution of perl snippets over IRC in some kind of sandbox, it might be worth looking at how it does that.

[reply]
[d/l]

Back to Seekers of Perl Wisdom