Strategic Thinking (was: Re: Speculative: Rust for base system components)

[Wojciech Puchar]

>> I use separate processes and don't feel the lack of security. I don't use
>> capsicum too.
>
> Really? Explain, please.

What to explain. I run program A as user A and program B as user B.
Access rights on user A $HOME is 700 as well as user B.

Both programs (it may be apache server) listens to some port on localhost

One proxy servers presents them to outer world as webpage A and B.

That's all.

>> Could you explain it more precisely why standard process and user/group
>> separation is insufficient?
>
> Why then did the industry move from mainframes to the client/server
> model?
>
I don't understand what your question have to running programs on 
different users under unix.

Mainframes are IBM System z or earlier computers. Very expensive.

>> If something could be added then it would be limiting what ports can each
>> user open. But it's not really a problem.
>
> The UNIX security model, even with ACLs, POSIX.1e, and capsicum, sucks.

No explanation why.

For me it's the best model i know.

>> be made.
>
> They're self contained, linked against libraries in the container.

So it should be possible to just put them on user account with all their 
files and run them. Unless author assumed it needs root privileges which 
is plain wrong.

>
> When you do your own thing you become irrelevant. Lucky for me I'm
> close enough to retirement it doesn't matter however if I was younger

Strange that you are not young and don't see that all of today 
"inventions" are solutions to nonexisting problems.

>>
>> Anyway if they prefer linux let they use linux.
>
> And 95% of the UNIX-like world does. Should we give up and become a
> hobby O/S, like some other examples we can think of?

The alternative is to become the same as linux which doesn't make sense.