Re: [isabelle] Sandboxed evaluation of Isabelle theories?



> This is where Unix chroot (or better) comes into play.

What seems reasonably robust to me is:
* Setup one virtualized reference machine
  * no access to net from the machine itself
  * read-only access to one dedicated directory on your host system
where the theories to be checked are placed
  * Isabelle2013
  * sshd running to issue batch jobs there etc.

Safe this machine such that you can restore it on problems of any kind.
 Then use it!

Cheers,
	Florian

-- 

PGP available:
http://home.informatik.tu-muenchen.de/haftmann/pgp/florian_haftmann_at_informatik_tu_muenchen_de

Attachment: signature.asc
Description: OpenPGP digital signature



This archive was generated by a fusion of Pipermail (Mailman edition) and MHonArc.