Re: Bytecode: Safe or not? / luac manual

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Bytecode: Safe or not? / luac manual
From: Javier Guerra Giraldez <javier@...>
Date: Mon, 31 Oct 2011 14:24:49 -0500

On Mon, Oct 31, 2011 at 1:15 PM, Stefan Reich
<stefan.reich.maker.of.eye@googlemail.com> wrote:
> Same with JavaScript. Imagine JavaScript running "trusted" code only.
> Would it still be as useful? Your machine would be in danger every
> time you browse an unknown website.

AFAICT, javascripts VMs trust only locally-generated bytecode (or
JIT-ed machine language, or executable ASTs or whatever they execute).
 everything is received as source code

-- 
Javier

References:
- Bytecode: Safe or not? / luac manual, Stefan Reich
- Re: Bytecode: Safe or not? / luac manual, Luiz Henrique de Figueiredo
- Re: Bytecode: Safe or not? / luac manual, Stefan Reich
- Re: Bytecode: Safe or not? / luac manual, Frank Meier-Dörnberg
- Re: Bytecode: Safe or not? / luac manual, Stefan Reich
- Re: Bytecode: Safe or not? / luac manual, Frank Meier-Dörnberg
- Re: Bytecode: Safe or not? / luac manual, Stefan Reich

Prev by Date: Calling lua functions from C when using luajit ffi.
Next by Date: Re: Bytecode: Safe or not? / luac manual
Previous by thread: Re: Bytecode: Safe or not? / luac manual
Next by thread: Re: Bytecode: Safe or not? / luac manual
Index(es):
- Date
- Thread