That would be what a capability system is all about. You only give the rights away that the process actually needs, not your full user rights. I'm glad you like it. :-)
I never claimed that I disliked it. > Such paranoia isn't useful for a multi user system, or a single > user system. All it is is a academic excersise in `intellectual > mastrubation'. You may think so. But what if it's possible? It would be great to work on such a system, wouldn't it? I don't think it would be great (or as great as it is purported to be), it is very seldom you need such flexibility. I seldom use the current classic UID based scheme. It is a cute feature, but requires alot of work to get done right, and the end result isn't that immensly useful IMHO. Compare that to the current situation on GNU/Linux, where it can ruin all your personal files. How often has this happened to you? Or anyone? The worst thing that ever happened to me was doing `rm -rf ~/' by accident, and such a capability system won't help with that unless it has a built in AI that can tell if removing the home directory is done by accident or on purpose. _______________________________________________ L4-hurd mailing list [email protected] http://lists.gnu.org/mailman/listinfo/l4-hurd
