StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
8554701
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
0
CommunityOwnedDate
CreationDate
2011-12-18T20:48:51.910
FavoriteCount
0
LastActivityDate
2011-12-19T17:44:00.123
LastEditDate
2011-12-19T17:44:00.123
LastEditorUserId
817441
OwnerUserId
817441
ParentId
8456109
PostTypeId
2
Score
2
ViewCount
0
LastEditorDisplayName
text
Body
Well, you can use some general security system to ensure safe code execution like <a href="http://wiki.apparmor.net/index.php/Main_Page" rel="nofollow">AppArmor</a> or <a href="http://en.wikipedia.org/wiki/Security-Enhanced_Linux" rel="nofollow">SELinux</a>. It works not only for java, python, etc. applications, but also for bash-scripts, binary executables and so on. Haven't worked at all with SELinux, but this is a simple example of AppArmor security profile which does everything you mentioned except "running more than X seconds" - this can be done by timeout mechanism (I'm a new user, so cannon post a second link here O_o..) <pre><code>#include <tunables/global> /path/to/executable { #include <abstractions/base> # http://linux.die.net/man/2/setrlimit # limit memory (address space) set rlimit as <= 150M, # limit core dump file http://linux.die.net/man/5/core set rlimit core <= 2M, # allow to create files only this size at max set rlimit fsize <= 1M, # limits number of threads (fork bomb won't go! :)) set rlimit nproc <= 10, # program will have access to stuff defined in abstractions/base and # to the file defined below. Nothing else. /path/to/file.txt rw, } </code></pre> What about putting each script in a sandbox - you can create several identical profiles for script1, script2 etc. This is also the way if you want different permissions for different excercises people will solve on your site. And this is an example of using timeout: <pre><code>$sudo apt-get install timeout $timeout 3 ./binary #limits execution of ./binary to 3 seconds </code></pre> I also want to recommend you limit compilation time for compiled proramming languages if you have any. For example, in C++ someone can write a tricky template or <pre><code>#include </dev/urandom> </code></pre> That will cause cpu-intensive work at compile-time.
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POExecute external Java source code on server - limit security and resources?
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USIxanezis
UserOwnerUserId
1. USIxanezis
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.