top | item 18434979

(no title)

ender7 | 7 years ago

There's a decent argument that current desktop OSes are a poor man's OS. The permissive-by-default approach of traditional OSes is deeply problematic and attempts at reigning that in (Mac App store sandbox, capabilities work on *nix) have largely failed to gain any traction.

It's certainly not elegant that we build a proper security model from within a browser rather than an OS, but it might be the only practical approach (short of some large-scale migration to iOS/Android/Fuschia etc, which seems...unlikely.)

discuss

izacus|7 years ago

> There's a decent argument that current desktop OSes are a poor man's OS. The permissive-by-default approach of traditional OSes is deeply problematic and attempts at reigning that in (Mac App store sandbox, capabilities work on *nix) have largely failed to gain any traction.

What if they've failed because they're a poor idea that damage the reason why computers have become an ubiquitous tool and drivers of innovation? In Apples little golden garden, Linux, Chrome and hundreds of other things you've come to understand as required features of an OS would not exist. If Microsoft would ban competitive browsers like Apple did, we'd never dig out of the cesspool of IE6 internet.

And to build such innovative and updated software, you NEED the ability to modify parts of the system, not a sandbox.

(Disclaimer: This does not mean the security approach does not need to be updated. Sandboxes aren't a general solution though.)