Reputation: 304
Stop R executing System or Shell commands
i'd like to disable commands that can execute other non R related stuff like System(), Shell() e.g.
for (year in 2010:2915){
system("calc")
}
from running within R.
any suggestions other than locking down the user executing?
thanks
edit: to add more context, we allow the users to create R scripts in our solution which are passed to the R Engine to execute, we then process those results.
Upvotes: 2
Views: 653
Answers (1)
Reputation: 515
Short of editing the R source code to remove the undesirable functions, which would be tedious and probably a bit dangerous, I would override these functions:
# override system()
env <- as.environment("package:base")
unlockBinding("system", env) # bindings in the base R are write-protected
assign(
"system",
function(...){stop("This is a forbidden command!")},
envir=env
)
lockBinding("system", env)
This would give the following when a user runs system():
> system()
Error in system() : this is a forbidden command
So that the changes take effect each time R is started, you could override as many functions as you want this way, adding them to .First() in your (write-protected) "Rprofile.site" file:
.First <- function(){
# code to override system() here
# code to override shell() here
# ...
}
Note that this will not prevent an ill-intentioned determined user from re-implementing the forbidden functionality though.
Upvotes: 2
Related Questions
- How to stop a command in R in Windows
- Prevent Rstudio console from showing script commands
- How can I execute R one-liners from the terminal without exiting R?
- How can I stop a running R command in linux other than with Ctrl + C?
- Preventing user from invoking shell commands in R language
- stop execution when you click "Run the current line or selection"
- System call without invoking shell in R
- Stop executing code in R
- Aborting execution of code in R(-Studio)
- R and System calls