I am not sure exactly what is included in a sub-hurd, but I infer
that it is a more comprehensive extension of a chroot-jail.
A sub-hurd is a sub-system on top of the parant system.
If the sub-hurd is going to be the basic mechanism of security,
then EVERY new execution of every application should be
performed in a freshly instantiated sub-hurd.
You are assuming that each and every application is hostile, that
isn't the case. If you have something that can be considered hostile
(say, something that needs root privs), you can run it in a seperate
enviroment. Enclosing each and every process into its own jail-like
enviroment is beyond absurd.
_______________________________________________
L4-hurd mailing list
[email protected]
http://lists.gnu.org/mailman/listinfo/l4-hurd
