From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Thread: 103376,af0c6ea85f3ed92d X-Google-NewGroupId: yes X-Google-Attributes: gida07f3367d7,domainid0,public,usenet X-Google-Language: ENGLISH,ASCII-7-bit Received: by 10.68.73.229 with SMTP id o5mr3573442pbv.7.1328874513815; Fri, 10 Feb 2012 03:48:33 -0800 (PST) Path: wr5ni8465pbc.0!nntp.google.com!news2.google.com!postnews.google.com!f5g2000yqm.googlegroups.com!not-for-mail From: Ludovic Brenta Newsgroups: comp.lang.ada Subject: Re: Arbitrary Sandbox Date: Fri, 10 Feb 2012 03:48:33 -0800 (PST) Organization: http://groups.google.com Message-ID: <2aaee0a4-e820-4a75-bbaf-d9d09c366d2c@f5g2000yqm.googlegroups.com> References: NNTP-Posting-Host: 153.98.68.197 Mime-Version: 1.0 X-Trace: posting.google.com 1328874513 7974 127.0.0.1 (10 Feb 2012 11:48:33 GMT) X-Complaints-To: groups-abuse@google.com NNTP-Posting-Date: Fri, 10 Feb 2012 11:48:33 +0000 (UTC) Complaints-To: groups-abuse@google.com Injection-Info: f5g2000yqm.googlegroups.com; posting-host=153.98.68.197; posting-account=pcLQNgkAAAD9TrXkhkIgiY6-MDtJjIlC User-Agent: G2/1.0 X-Google-Web-Client: true X-Google-Header-Order: HUALESRCNK X-HTTP-UserAgent: Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20111222 Firefox/9.0.1,gzip(gfe) Content-Type: text/plain; charset=ISO-8859-1 Date: 2012-02-10T03:48:33-08:00 List-Id: Rob Shea wrote on comp.lang.ada: > I've been handed a project, but I'm not a programmer, much less an Ada > programmer. The idea is a Windows test station sandbox where arbitrary > applications can be executed, but cannot make system changes or > transmit data. > > I have two primary voice on my team, one is calling for J# as the .NET > framework will allow for "faster development and provides important > security features" and the other is calling for Ada because "safety is > the primary concern and it's cheaper to build it right the first > time." IIUC, your sandbox cannot be a .NET application, or it will not be able to run "arbitrary code" because it will be restricted to running only .NET bytecode inside the .NET virtual machine. If that is correct and if C# can only be compiled to .NET and can only run in the .NET virtual machine, then C# is ruled out. If you want to run "arbitrary code", you must run outside the .NET virtual machine (possibly running a .NET virtual machine _inside_ your sandbox). -- Ludovic Brenta.