[DGD] microkernel philosophy: how not to make ravioli code
bart at wotf.org
bart at wotf.org
Mon Mar 3 21:58:40 CET 2014
On Mon, 3 Mar 2014 15:04:49 -0500, Dread Quixadhal wrote
> Yes. Basically, if it's something that's required by most of the entire
> system, there's not much to be gained by trying to isolate it, as
> everything has to end up funneling through it anyways.
Thats in itself not a reason for letting such code have special privileges.
Code used by everything should have as little privileges as possible (but
should be strongly protected against unauthorized modifications)
>
> There's also the question of how often it may have to escalate
> privs. In the case of an object manager, I'd expect it to need
> privs frequenly, since it has to manage objects which will be owned
> by other users.
Exactly.
Bart.
--
http://www.flickr.com/photos/mrobjective/
http://www.om-d.org/
More information about the DGD
mailing list