2014-10-28 21:38 GMT-02:00 M Farkas-Dyck <strake...@gmail.com>: > On 28/10/2014, Daniel Camolês <bigat...@gmail.com> wrote: >> That's interesting, but there is a problem. How do you execute >> untrusted code? Maybe some kind of virtual machine? > > Thus, or in capability mode.
Capability mode would require the target operating system to have this kind of feature. Given a world that have more than one operating system working on people's computers, maybe it is simpler to port a vm than implement capability mode everywhere? > Most program distribution systems what I know share this problem. It > is the user's responsibility to properly confine untrusted code. Well, I can't say that to the grandma who wants to see her grandsons pictures on the Internet.
