node366.html

来自「一本很好的python的说明书,适合对python感兴趣的人」· HTML 代码 · 共 100 行

HTML
100
字号 
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<title>16.1.1 An example</title>
<META NAME="description" CONTENT="16.1.1 An example">
<META NAME="keywords" CONTENT="lib">
<META NAME="resource-type" CONTENT="document">
<META NAME="distribution" CONTENT="global">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link rel="STYLESHEET" href="lib.css" tppabs="http://www.python.org/doc/current/lib/lib.css">
<LINK REL="previous" href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html">
<LINK REL="up" href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html">
<LINK REL="next" href="module-Bastion.html" tppabs="http://www.python.org/doc/current/lib/module-Bastion.html">
</head>
<body>
<DIV CLASS="navigation"><table align="center" width="100%" cellpadding="0" cellspacing="2">
<tr>
<td><A href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html"><img src="previous.gif" tppabs="http://www.python.org/doc/current/icons/previous.gif" border="0" height="32"
  alt="Previous Page" width="32"></A></td>
<td><A href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html"><img src="up.gif" tppabs="http://www.python.org/doc/current/icons/up.gif" border="0" height="32"
  alt="Up One Level" width="32"></A></td>
<td><A href="module-Bastion.html" tppabs="http://www.python.org/doc/current/lib/module-Bastion.html"><img src="next.gif" tppabs="http://www.python.org/doc/current/icons/next.gif" border="0" height="32"
  alt="Next Page" width="32"></A></td>
<td align="center" width="100%">Python Library Reference</td>
<td><A href="contents.html" tppabs="http://www.python.org/doc/current/lib/contents.html"><img src="contents.gif" tppabs="http://www.python.org/doc/current/icons/contents.gif" border="0" height="32"
  alt="Contents" width="32"></A></td>
<td><a href="modindex.html" tppabs="http://www.python.org/doc/current/lib/modindex.html" title="Module Index"><img src="modules.gif" tppabs="http://www.python.org/doc/current/icons/modules.gif" border="0" height="32"
  alt="Module Index" width="32"></a></td>
<td><A href="genindex.html" tppabs="http://www.python.org/doc/current/lib/genindex.html"><img src="index.gif" tppabs="http://www.python.org/doc/current/icons/index.gif" border="0" height="32"
  alt="Index" width="32"></A></td>
</tr></table>
<b class="navlabel">Previous:</b> <a class="sectref" href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html">16.1 rexec  </A>
<b class="navlabel">Up:</b> <a class="sectref" href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html">16.1 rexec  </A>
<b class="navlabel">Next:</b> <a class="sectref" href="module-Bastion.html" tppabs="http://www.python.org/doc/current/lib/module-Bastion.html">16.2 Bastion  </A>
<br><hr></DIV>
<!--End of Navigation Panel-->

<H2><A NAME="SECTION0018110000000000000000">
16.1.1 An example</A>
</H2>

<P>
Let us say that we want a slightly more relaxed policy than the
standard <tt class="class">RExec</tt> class.  For example, if we're willing to allow
files in <span class="file">/tmp</span> to be written, we can subclass the <tt class="class">RExec</tt>
class:

<P>
<dl><dd><pre class="verbatim">
class TmpWriterRExec(rexec.RExec):
    def r_open(self, file, mode='r', buf=-1):
        if mode in ('r', 'rb'):
            pass
        elif mode in ('w', 'wb', 'a', 'ab'):
            # check filename : must begin with /tmp/
            if file[:5]!='/tmp/': 
                raise IOError, "can't write outside /tmp"
            elif (string.find(file, '/../') &gt;= 0 or
                 file[:3] == '../' or file[-3:] == '/..'):
                raise IOError, "'..' in filename forbidden"
        else: raise IOError, "Illegal open() mode"
        return open(file, mode, buf)
</pre></dl>
Notice that the above code will occasionally forbid a perfectly valid
filename; for example, code in the restricted environment won't be
able to open a file called <span class="file">/tmp/foo/../bar</span>.  To fix this, the
<tt class="method">r_open()</tt> method would have to simplify the filename to
<span class="file">/tmp/bar</span>, which would require splitting apart the filename and
performing various operations on it.  In cases where security is at
stake, it may be preferable to write simple code which is sometimes
overly restrictive, instead of more general code that is also more
complex and may harbor a subtle security hole.

<DIV CLASS="navigation"><p><hr><table align="center" width="100%" cellpadding="0" cellspacing="2">
<tr>
<td><A href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html"><img src="previous.gif" tppabs="http://www.python.org/doc/current/icons/previous.gif" border="0" height="32"
  alt="Previous Page" width="32"></A></td>
<td><A href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html"><img src="up.gif" tppabs="http://www.python.org/doc/current/icons/up.gif" border="0" height="32"
  alt="Up One Level" width="32"></A></td>
<td><A href="module-Bastion.html" tppabs="http://www.python.org/doc/current/lib/module-Bastion.html"><img src="next.gif" tppabs="http://www.python.org/doc/current/icons/next.gif" border="0" height="32"
  alt="Next Page" width="32"></A></td>
<td align="center" width="100%">Python Library Reference</td>
<td><A href="contents.html" tppabs="http://www.python.org/doc/current/lib/contents.html"><img src="contents.gif" tppabs="http://www.python.org/doc/current/icons/contents.gif" border="0" height="32"
  alt="Contents" width="32"></A></td>
<td><a href="modindex.html" tppabs="http://www.python.org/doc/current/lib/modindex.html" title="Module Index"><img src="modules.gif" tppabs="http://www.python.org/doc/current/icons/modules.gif" border="0" height="32"
  alt="Module Index" width="32"></a></td>
<td><A href="genindex.html" tppabs="http://www.python.org/doc/current/lib/genindex.html"><img src="index.gif" tppabs="http://www.python.org/doc/current/icons/index.gif" border="0" height="32"
  alt="Index" width="32"></A></td>
</tr></table>
<b class="navlabel">Previous:</b> <a class="sectref" href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html">16.1 rexec  </A>
<b class="navlabel">Up:</b> <a class="sectref" href="module-rexec.html" tppabs="http://www.python.org/doc/current/lib/module-rexec.html">16.1 rexec  </A>
<b class="navlabel">Next:</b> <a class="sectref" href="module-Bastion.html" tppabs="http://www.python.org/doc/current/lib/module-Bastion.html">16.2 Bastion  </A>
</DIV>
<!--End of Navigation Panel-->
<ADDRESS>
<hr>See <i><a href="about.html" tppabs="http://www.python.org/doc/current/lib/about.html">About this document...</a></i> for information on suggesting changes.
</ADDRESS>
</BODY>
</HTML>

node366.html - 源码说明

本页面展示了「一本很好的python的说明书,适合对python感兴趣的人」中的 node366.html 源码文件,采用 HTML 编程语言编写,共 100 行代码。您可以在线阅读完整代码内容,也可以返回资源详情页下载完整源码包进行本地学习和开发。

虫虫下载站收录了大量与python相关的技术资源,包括源代码、技术文档、电路图等,是电子工程师和嵌入式开发者的专业学习平台。

⌨️ 快捷键说明

复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?