[sldev] Scripting projects priority survey
Timeless Prototype
timelessprototype at gmail.com
Wed Jun 25 05:57:04 PDT 2008
Uploading precompiled binaries worries me a lot, especially after Diniz
Cruz's video demonstration of how to root the CLR - permanently
disabling security features in the .NET Framework.
http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp
Babbage Linden might have information about how this will be mitigated?
Thanks.
- Timeless Prototype
Bruce Tong wrote:
> On Wed, Jun 25, 2008 at 5:39 AM, Christian Scholz / Tao Takashi (SL)
> <tao.takashi at googlemail.com> wrote:
>> I wonder if everybody knows what those questions are about (like
>> scheduling or collection classes). I talked to some Lindens and think
>> I know a little bit about the background regarding scheduling and
>> ressource limits (at least I have an idea) but maybe this can be
>> elaborated upon a little bit on what that means and what collection
>> classes are (not everybody is a C# programmer).
>
> I'm not a C# programmer, but I assumed collection classes referred to
> things like a Hashmap in Java.
>
> I've not put a lot of thought into this, but might there be some
> undesirable exploits if people are able to upload their own
> compilations? I guess I'm wondering if folks might be able to get
> outside of what I assume is an isolated or protected runtime
> environment and find data to which they should not have? I'm
> completely ignorant of the runtime environment of scripts, so these
> are probably unjustified concerns.
>
More information about the SLDev
mailing list