Hacker News new | ask | show | jobs
by simonw 1237 days ago
That's what I'm talking about: I want to run Python code on my server, but since it's from an untrusted source I want to make sure that it's in a sandbox with strict limits on what it can do, how much CPU it can use and how much RAM it has available to it - so malicious code can't be used to crash my server or steal data it shouldn't have access to.
1 comments
bobkazamakis 1237 days ago
How do you think WASM will solve this where everything else has failed?
link
mikewarot 1237 days ago
Because WASM supports capability based security and thus never trusts code to do the right thing. Unlike every single one of it's predecessors.
link
zerodensity 1237 days ago
WASM does not support capability based security that is something of an extension to the WASI proposal.

And even then the security stuff is based on previously existing work in the cloud space. Which has existed for some time but is not widespread.

link
int_19h 1237 days ago
Java? .NET?
link