-
|
Not sure if this belongs here. Feel free to close if not. My concern is that the documentation for IronPython's security model - https://ironpython.net/documentation/dotnet/dotnet.html#id104 - links to the Microsoft article for CAS ("Code Access Security"), which is (at best) deprecated, and for modern .NET versions, removed. Is there a solution to sandboxing that still works in modern .NET? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Short answer: No. Longer answer: Security sandboxing in IronPython depends on what the DLR provides, which in turn depends on .NET. Modern .NET (previously ".NET Core") depend on the operating system, container, or a hypervisor to provide sandboxing, not an elaborate system of CAS, AppDomains, etc. The latter still works in .NET Framework (which is not "modern"), and by extension in DLR and IronPython. |
Beta Was this translation helpful? Give feedback.
Short answer: No.
Longer answer: Security sandboxing in IronPython depends on what the DLR provides, which in turn depends on .NET. Modern .NET (previously ".NET Core") depend on the operating system, container, or a hypervisor to provide sandboxing, not an elaborate system of CAS, AppDomains, etc.
The latter still works in .NET Framework (which is not "modern"), and by extension in DLR and IronPython.