From mboxrd@z Thu Jan 1 00:00:00 1970 From: David Masover Subject: Re: viewprinting processes and process oriented permissions got funded by DARPA Date: Tue, 13 Apr 2004 20:34:54 -0500 Message-ID: <407C953E.2080505@slaphack.com> References: <407C304F.4080804@namesys.com> Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: list-help: list-unsubscribe: list-post: Errors-To: flx@namesys.com In-Reply-To: <407C304F.4080804@namesys.com> List-Id: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: Reiserfs List -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I don't know how relevant this is to the discussion about filesystem-based security, but one thing I've wanted to do is limit huge portions of a program in security. Imagine a browser that let Javascript play with everything _inside_ the browser, but had to go through a common interface before it could create files or connect out? ~ At least with the files, it gives a chance to prompt the user. In general, I like that better than I like parsing out "bad code". But I have never seen a method to create something like that. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iQIVAwUBQHyVPngHNmZLgCUhAQKweA/9HzP90oiJCFydU77Ga7sYimfwHzeq3XPM byTiGWip0ro93ZOxAm/7O5wwCp4DlEZYL7+Su43VVfjeSP5Kz3KwmCN6GjO7BUO+ mZORAGRoe9H0Uk8W5weTQJjhn8KYXpm8R6Ls8wu9AE0xWiLd1gqsukLoekHQjt+Z JrN6r7ETrXQ5rN1jaYSCC3CWzX8u0HJLmwpdNCcfhMgQ70gSUgmRjcXyIl6+d7Y+ RyzTjMrv6i6sbw8MwHnWH2LLy26NeHt5xdr9V5CTsLEORr2wdBjATxjQC0TzQxpu yB/cRLDxrtsRkaYhoUUnzFIR5C6EHauPXpbevF7Yl7E4FpJQhBH7jcAbhHztKP0U +yDZylbj+7cTcZ7Kd9CISDX3QW0Zgl0KSWihCEtMUR/z+QHpYbHfveYZSZioCPoK kMUmYsg6YHUQKCwrwfrEqZYZJgS3k71/iDdpDQCQBnMW4ZAHd0MWNk4ApsdTp8N3 1sV7UCqXPfMERMjrdeP+P/aH5h3/vCvtEUkquQVqb7C124pxrXD0nL8mhebBMVey mZFGqwdprUVNLhwkV8iqz2/WMqrnZt8Q2hnZybXU2dtWe77ffGBbQwb1jJgE1OZJ dK6ET/B0Ppy1gu9Up93Qu1BeGiwo7Jd2cJjjl0av7jM7GmbuxcqxNo5tzPkuWRHI S3TJpnBStIM= =d1qP -----END PGP SIGNATURE-----