|
From: | Malte Meyn |
Subject: | LilyPond in a CMS [was: Re: Defining custom symbols] |
Date: | Sun, 15 Apr 2018 12:45:12 +0200 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.7.0 |
Am 15.04.2018 um 12:41 schrieb Robert Hickman:
Second thought: (see my previous, sorry about double posting).What are the risks of integrating lillypond into a CMS from a security perspective, does it allow you to run shell commands for instance? I will not be exposing this publicly, just to the admin interface only I use. I like to know what exploits anything I use could expose howeaver.
Have a look at the options --jail and -dsafe at http://lilypond.org/doc/v2.19/Documentation/usage-big-page.html
[Prev in Thread] | Current Thread | [Next in Thread] |