comment on

How safe is Safe.pm?

Recently, deciding to do some improvements to RegexLab, I decided Safe be best employed, so I did a quick search on perlmonks and came accross

How to use LWP::Simpe inside a safe compartment? (unresolved - probably need to permit some network opcodes)
use Safe and CGI; (a nice little demo)
The proper use of Safe(lesson: lexicals ain't globals)
How Safe is Safe::? (warranty discussion - not related)
Known security issues with Safe.pm? is right on topic, but there is no answer ( and my question is more to the comments of ask ).
Mileage with safe, Perl sandbox, Safe / @ISA Problem

Now I come accross Safe.pm is not safe in which ask says

By returning the right values from the safe compartment it's quite possibly to "break out" of it.

and someone in the cb said the same thing (Safe isn't truly safe), so can somebody explain to me why/how?

Code examples work best.

P.S.

I am aware of Safe::Hole. I did search perlmonks for previous discussion ask mentions that discuss the insecurity of Safe.pm, but turned up nothing.

Are you posting in the right place? Check out Where do I post X? to know for sure.
Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:
<code> <a> <b> <big> <blockquote> <br /> <dd> <dl> <dt> <em> <font> <h1> <h2> <h3> <h4> <h5> <h6> <hr /> <i> <li> <nbsp> <ol> <p> <small> <strike> <strong> <sub> <sup> <table> <td> <th> <tr> <tt> <u> <ul>
Snippets of code should be wrapped in <code> tags not <pre> tags. In fact, <pre> tags should generally be avoided. If they must be used, extreme care should be taken to ensure that their contents do not have long lines (<70 chars), in order to prevent horizontal scrolling (and possible janitor intervention).
Want more info? How to link or How to display code and escape characters are good places to start.


We don't bite newbies here... much
	PerlMonks