[cap-talk] More Heresey: ACLs not inherently bad
Karp, Alan H
alan.karp at hp.com
Thu Sep 11 11:50:19 CDT 2008
Toby Murray wrote:
> I agree. I contend that any program that requires O(20+) -sized
> namespaces to be constructed each time it executes will be sufficiently
> complex to prevent it from being written in the first place. I can't
> imagine a sane calling convention of this size.
And even if it did ask for O(20), you'd have to designate the arguments, which convey the needed rights if you're using capabilities. The result is that you've done the minimum amount of work needed, even if that minimum isn't very small.
Virus Safe Computing Initiative
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
More information about the cap-talk