Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
amelius 3 days ago

Not really, unless you rewrite the kernel too. Security in Linux needs a complete makeover, where applications are not trusted as they are now.

quotemstr 3 days ago | parent [-]

> applications are not trusted as they are now.

Agreed, but...

> rewrite the kernel

Why would you do that? The kernel already has all the tools you need for isolating apps from each other. It's up to userspace to use these tools.

amelius 3 days ago | parent [-]

Because you don't bolt security on top of an existing system. You include it in the design of the system.

quotemstr 3 days ago | parent [-]

Can you please include enough technical details to have a discussion instead of making assertions so broad that they can't even be wrong?

amelius 3 days ago | parent [-]

It's more a matter of best practices than technical details.

You can build a skyscraper on top of the foundations of a shed, and the kernel devs have done an amazing job at that, but at some point you gotta conclude that maybe it is better to start from scratch with a new design. And security is a good enough reason.