>In general, creating a sandbox where a computer can only reach >$UPDATE_SERVER is very, very difficult.
I believe it. Perhaps we could help Microsoft make it easier. The sandbox doesn't have to include all their servers, just enough of them to service the sandboxed users. > And, as much as I hate to admit it, MS OSes are not the only ones >that can be compromised (he types on his black MacBook). If we can get sandboxes for MS and Apple, we FreeBSD users are willing to take our chances. R's, John
