Reformatted excerpts from _why's message of 2008-09-03: > I'm thinking something like a cross-platform Sandboxie (see: > sandboxie.com) which emulates a filesystem and socket environment for > each process.
Isn't that way harder than making MRI sandboxed? Look at what's out there now. On FreeBSD you have jail. On Linux you have chroot (the "poor man's jail") and a couple virtualization options, of which OpenVZ seems like the most active, but all of which require patching your kernel. I don't think you have any options on Darwin. On Windows you have Sandboxie and whatever Google's done for Chrome. Each of these is a very different, very complicated thing... I guess we can see what Google comes up with when they release Chrome for Darwin and Linux. The latter seems significantly less likely to happen anytime soon. -- William <[EMAIL PROTECTED]>
