On Tue, 18 May 2021 10:05:05 -0400 Leo Famulari <l...@famulari.name> wrote:
> On Mon, May 17, 2021 at 10:35:22PM -0400, Joshua Branson wrote: > > I suppose someone should fix the Hurd vulnerabilities as reported > > here: > > > > https://lists.gnu.org/archive/html/bug-hurd/2021-05/msg00079.html > > > > I don't think the vulnerabilities have been disclosed yet nor has > > there been a fix yet. > > That message is the disclosure. > Why not put our eggs in a few more baskets with way fewer holes and more, uh, basket inspectors looking at them, like maybe packaging Minix, or OpenBSD, or MirageOS, or whatever? I think I stretched that metaphor but yknow what I mean. They have seen way more scrutiny than Hurd and also run on more architectures and while not GPL licensed, AFAIK they are all libre. Maybe they can't be used in the operating-system-kernel struct field, but I don't see anything wrong with using Guix to deploy Mirage unikernel images for instance. There is even a nascent Scheme unikernel project with Loko Scheme. Ooor maybe compile some things to WASM and use a WASM+WASI runtime. I hate webshit but at least there is already tooling and major porting efforts for WASM.
