CML is great and really deserves more attention. We're lucky to have Andy deep dive into so many interesting subjects (modern JS engines, Concurrent ML), explain them in enthusiastic and well-written blog posts, and…
Appreciate your your answers. This makes Fuchsia quite interesting to me.
Thanks. How about virtualization? Using an example from the doc, if your child process accesses "/dev/class/framebuffer", can you intercept its communications? Can a process create a custom sandbox and run, say, AppMgr…
> An empty process has nothing > Namespaces are the gateway to the world Sounds like capability security to me. Although I wish they had said more about how these namespaces work. If they are inheritable and you can…
Judging by nomenclature it seems to be more influenced by Plan 9, which also adhered somewhat to capability-based security without advertising that fact.
CML is great and really deserves more attention. We're lucky to have Andy deep dive into so many interesting subjects (modern JS engines, Concurrent ML), explain them in enthusiastic and well-written blog posts, and…
Appreciate your your answers. This makes Fuchsia quite interesting to me.
Thanks. How about virtualization? Using an example from the doc, if your child process accesses "/dev/class/framebuffer", can you intercept its communications? Can a process create a custom sandbox and run, say, AppMgr…
> An empty process has nothing > Namespaces are the gateway to the world Sounds like capability security to me. Although I wish they had said more about how these namespaces work. If they are inheritable and you can…
Judging by nomenclature it seems to be more influenced by Plan 9, which also adhered somewhat to capability-based security without advertising that fact.