+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 19
How do you do....it? Thread, Python IDLE in Technical; We're looking to install Python with the IDLE into some of our ICT suites so the students can do some ...
  1. #1
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,319
    Thank Post
    115
    Thanked 91 Times in 61 Posts
    Rep Power
    29

    Python IDLE

    We're looking to install Python with the IDLE into some of our ICT suites so the students can do some programming. Sounds great but has anyone done this and if so what issues have you have with security policies etc?

    My concern is that Python will not obey ntfs permissions/group policies etc correctly and students could write scripts to access system files and so on, not being a Python programmer I've not had a lot to do with it!

    I'm all for getting the students programming but I'm conscious of the pitfalls.

  2. #2

    Join Date
    Sep 2008
    Location
    England
    Posts
    271
    Thank Post
    6
    Thanked 70 Times in 62 Posts
    Rep Power
    53
    Python is like any other windows program. It has to obey ntfs permissions. The only problems are if the permissions arn't set properly, or when code is submitted to a teacher. If a teacher (or admin) runs a students program, then it will run with the teachers permissions. Practically I don't think there is much chance of this being a problem, but the risk is there. The best solution to that is if the member of staff reads the code before running it. most stuff should be obvious.

  3. #3
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,319
    Thank Post
    115
    Thanked 91 Times in 61 Posts
    Rep Power
    29
    Thats a good start anyway - I had intended to put a windows firewall rule in to block python.exe from any network access as they don't need to do it.

    I'm not being deliberately awkward, but we do need to pre-empt any problems that can causes issues. Teachers and students have broadly similar permissions on networked PCs anyway so that shouldn't be too much of an issue.

  4. #4

    Oaktech's Avatar
    Join Date
    Jul 2011
    Location
    Bournemouth
    Posts
    2,806
    Thank Post
    774
    Thanked 547 Times in 427 Posts
    Rep Power
    260
    Quote Originally Posted by Sheridan View Post
    I'm not being deliberately awkward
    Yeah you are... but that's your job

    I'm following this with interest as i'm doing some reading try to pre-empt the inevitable. The ICT guys are dabbling with KODU and scratch, but it's only a matter of time!

  5. #5
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,319
    Thank Post
    115
    Thanked 91 Times in 61 Posts
    Rep Power
    29
    We already have scratch in use and Kodu is being looked at (althought that seems pretty safe anyway)

    We also looked into the Pi's - but availability seems to be an issue!

  6. #6

    Oaktech's Avatar
    Join Date
    Jul 2011
    Location
    Bournemouth
    Posts
    2,806
    Thank Post
    774
    Thanked 547 Times in 427 Posts
    Rep Power
    260
    Indeed... I'm still waiting for my Pi, when it arrives we'll sit down and work out if we can create a scheme of work to use it.

  7. #7
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,319
    Thank Post
    115
    Thanked 91 Times in 61 Posts
    Rep Power
    29
    Actually if the python IDE does obey NTFS permissions, and I block python.exe from any network traffic that would probably secure it enough for most users.

    Not being a python programmer I haven't got the knowledge to test it, bit of a VB man myself!

  8. #8

    Join Date
    Sep 2008
    Location
    England
    Posts
    271
    Thank Post
    6
    Thanked 70 Times in 62 Posts
    Rep Power
    53
    I doubt they would be able to do much damage with network stuff. I would be more concerned with running other programs, using the subprocess module or the os module. But this is common to most, if not all, other serious programming languages. It probably depends on your staff and students as to how much you need to secure it. In terms of security, python and vb have fairly similar security issues.

    I'm also waiting on my pi.

  9. #9
    Sheridan's Avatar
    Join Date
    Oct 2010
    Posts
    1,319
    Thank Post
    115
    Thanked 91 Times in 61 Posts
    Rep Power
    29
    Yes thats the bit I don't understand. Policy prevents them from running regedit (for example) but does that mean it could be started from python instead?

  10. #10

    Join Date
    May 2008
    Location
    UK
    Posts
    44
    Thank Post
    5
    Thanked 1 Time in 1 Post
    Rep Power
    0
    Hey..just curious on the latest with this? We've been asked to roll out Python...but I'm looking for the security holes too...

    Cheers,
    Jon

  11. #11

    SimpleSi's Avatar
    Join Date
    Jun 2005
    Location
    Lancashire
    Posts
    5,812
    Thank Post
    1,476
    Thanked 592 Times in 444 Posts
    Rep Power
    168
    Your probably not programmers so I'll explain

    If you give people a tool (such as sharp knives or Python) then what you need is for people to take responsibility for using them - trying to restrict their usage (such as anchoring the knives via a piece of chain to a table or restricting permissions on share access) negates the usefulness of the tool.

    What you need is social behaviour policies/rules/policing/sanctions not physical restrictions

    Simon

  12. Thanks to SimpleSi from:

    CyberNerd (7th December 2012)

  13. #12

    Join Date
    Aug 2012
    Posts
    3
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    very cool

  14. #13

    Join Date
    May 2008
    Location
    UK
    Posts
    44
    Thank Post
    5
    Thanked 1 Time in 1 Post
    Rep Power
    0
    Cheers SimpleSi...but in a school it is simplier said than done...

  15. #14

    Join Date
    Jun 2009
    Posts
    9
    Thank Post
    3
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    We are looking at rolling out python to some areas for same reasons.

    I acknowledge SimpleSi's principle and this will apply in 95+% cases at our school. However every so often we get someone who wants to 'experiment' (not a bad thing), but they may also be someone who knows less than they think they do and/or someone who is relatively immature in applying such principles (the nature of [some] school students).

    So - just wondering if people have now tried this, before we have a go and reinvent the wheel.
    Also if any particular distribution of python is better to deploy on a curriculum network than others ('vanilla', ActiveState, Portable etc) and any pitfalls to avoid ....

    [personally prefer PyScripter to IDLE]

    TIA
    Last edited by bede; 10th October 2012 at 06:06 PM.

  16. #15

    Join Date
    Jan 2010
    Posts
    7
    Thank Post
    3
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Hi, "It's only a matter of time...I think you are right.
    I have asked our technicians (yes I'm a teacher - just ducking to avoid shrapnel now) to install Python (IDLE) and it is blocked by group policy for everyone except Admin. We were not sure why. Can anyone help us?
    Also I was not sure whether the Python IDLE runs an executable if you stay within the IDE.
    Up to know we have been doing all our "proper" programming using JAVA so this issue has been avoided.
    Any pointers appreciated.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Replies: 5
    Last Post: 13th August 2009, 12:56 PM
  2. Shutdown automatically when idle.
    By Quackers in forum Windows
    Replies: 18
    Last Post: 18th October 2007, 02:43 PM
  3. Python LDAP module version problem
    By CyberNerd in forum Coding
    Replies: 6
    Last Post: 14th December 2006, 01:18 PM
  4. 2 DC's - one getting hammered, one almost idle - why?
    By sidewinder in forum Wireless Networks
    Replies: 18
    Last Post: 9th November 2006, 09:37 AM
  5. Force Logoff After idle time period
    By nuttygeek in forum Windows
    Replies: 11
    Last Post: 22nd March 2006, 09:51 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •