On Sun, Feb 3, 2013 at 4:44 PM, Klaus Trainer <[email protected]>wrote:
> On Thu, 2013-01-31 at 14:46 +0000, Jason Smith wrote: > > > > The word "sandbox" is vague. There is no clear definition. (There is a > > mundane historical reason for that: the "sandbox" was whatever the C > > program did.) > > Good point. For instance, even if you're executing JavaScript within > plain Spidermonkeys, people might still be able to issue > denial-of-service attacks against your system. Or side channel attacks. > DOS has nothing with sandboxing or maybe in a large extent here. Sandboxing in couchjs is about: 1. restrict I/O : no disk or net access from a view 2. make sure that a view function won't leek to another - benoƮt
