Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

what is safe-tcl?

10 views
Skip to first unread message

fish

unread,
Apr 18, 1996, 3:00:00 AM4/18/96
to

what is safe-tcl?? and when or why should I use it??
where can I get more information about this??
thanks!

Steve Ball

unread,
Apr 22, 1996, 3:00:00 AM4/22/96
to
gis8...@cis.nctu.edu.tw (fish) writes:

Safe-Tcl is a scheme to allow untrusted Tcl scripts to be evaluated
without the danger of that script "damaging" the local computing environment
is some way (eg. by issuing the command 'exec rm -rf *').

Safe-Tcl has been incorporated into Tcl 7.5. Using the interp command, you
can create new interpreters in a Tcl application which have a completely
separate namespace. In addtion, you can make an interpreter 'safe'.
The man page interp(n) gives more details.

Safe-Tcl is used whenever you want to execute a piece of Tcl code which may
have harmful side-effects. For example, there are active e-mail applications
which allow Tcl scripts to be attached to mail messages. Also, my WWW browser,
SurfIt!, uses safe interpreters to execute downloaded Tcl scripts to
implement Web applets.

BTW, SurfIt! also includes a prototype for Safe-Tk, which does for Tk what
Safe-Tcl does for Tcl.

For more information see interp(n), and:

Borenstein, N. EMail with a Mind of its Own: The Safe-Tcl Language for Enabled
Mail. In Proceedings of ULPAA. 1994.
On-line version is at:
http://minsky.med.virginia.edu/sdm7g/Projects/Python/safe-tcl/ulpaa-94.ps.gz
see also
http://minsky.med.virginia.edu/sdm7g/Projects/Python/safe-tcl/safe-tcl.ps.gz

Cheers,
Steve Ball, ANU

--
Steve Ball, PASTIME Project, ACSys CRC, ANU
E-mail: Steve...@pastime.anu.edu.au Ph. +61 6 2495146
Snail-mail: Canberra ACT 0200, AUSTRALIA
He's not the messiah, he's a very naughty boy!

Darren New

unread,
Apr 22, 1996, 3:00:00 AM4/22/96
to fish
On 18 Apr 1996, fish wrote:
> what is safe-tcl?? and when or why should I use it??
> where can I get more information about this??
> thanks!

SafeTcl, in it's current form, is a version of the Tcl interpreter that
provides a trusted half in which untrusted programs can be run.
It's used for "enabled email," much like Java is used for "enabled web
pages."


If you are writing to ask about Safe-Tcl, you can retrieve an overview
paper, full specs, documentation, working implementation, and examples
from:
URL ftp://ftp.fv.com/pub/code/other/safe-tcl.tar The overview
paper alone can be found in:
URL ftp://ftp.fv.com/pub/nsb/safe-tcl-ulpaa-94.{txt,ps} Or consult
the the mailing list:
safe-tcl[-request]@cs.utk.edu.

-- Darren
--
Darren New / Dir. of Custom Software Design / First Virtual Holdings Inc.
Anyone can buy and sell information over the internet for real money TODAY!
http://www.fv.com or in...@fv.com -=|=- PGP key: finger dn...@yuan.fv.com
This message brought to you by the letter T, and the number 1.

Larry W. Virden

unread,
Apr 25, 1996, 3:00:00 AM4/25/96
to

I thought Safe Tcl was a part of Tcl 7.5 now?
--
:s Larry W. Virden INET: lvi...@cas.org
:s <URL:http://www.teraform.com/%7Elvirden/> <*> O-
:s Unless explicitly stated to the contrary, nothing in this posting should
:s be construed as representing my employer's opinions.

0 new messages