On Wed, Oct 26, 2005 at 11:30:39AM -0400, Jonathan S. Shapiro wrote: > On Wed, 2005-10-26 at 11:06 +0200, Bas Wijnen wrote: > > No, not as alternative. Programs which need a POSIX box to run should still > > be allowed to use all the cool Hurd features directly. > > This would be very very pleasant. Unfortunately, it is very difficult to > achieve. The difficulty comes when you allow the insecure subsystem to > access things like your local files, which you want to protect.
That's what the POSIX box is for. When the process makes POSIX calls, they will return as if it has access to a complete filesystem. But in fact, it only accesses its own jail. However, the jail does not prevent the process from making library/system calls to services which all Hurd processes (also non-POSIX) can access. Obviously, they aren't given POSIX style permissions, but they also aren't given restrictions that other processes don't have. (And to be clear, other processes _do_ have the restriction that they can't write to all your files.) Thanks, Bas -- I encourage people to send encrypted e-mail (see http://www.gnupg.org). If you have problems reading my e-mail, use a better reader. Please send the central message of e-mails as plain text in the message body, not as HTML and definitely not as MS Word. Please do not use the MS Word format for attachments either. For more information, see http://129.125.47.90/e-mail.html
signature.asc
Description: Digital signature
_______________________________________________ L4-hurd mailing list [email protected] http://lists.gnu.org/mailman/listinfo/l4-hurd
