From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,55958fd991db66fe X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2002-08-20 11:07:29 PST Path: archiver1.google.com!news1.google.com!newsfeed.stanford.edu!news-spur1.maxwell.syr.edu!news.maxwell.syr.edu!newsfeed1.cidera.com!Cidera!torn!nf1.bellglobal.com!nf2.bellglobal.com!news20.bellglobal.com.POSTED!not-for-mail Message-ID: <3D628304.3040506@cogeco.ca> From: "Warren W. Gay VE3WWG" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0rc2) Gecko/20020618 Netscape/7.0b1 X-Accept-Language: en-us, en MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: Ada-inspired OS/Language References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Date: Tue, 20 Aug 2002 13:57:24 -0400 NNTP-Posting-Host: 198.96.47.195 X-Complaints-To: abuse@sympatico.ca X-Trace: news20.bellglobal.com 1029866199 198.96.47.195 (Tue, 20 Aug 2002 13:56:39 EDT) NNTP-Posting-Date: Tue, 20 Aug 2002 13:56:39 EDT Organization: Bell Sympatico Xref: archiver1.google.com comp.lang.ada:28260 Date: 2002-08-20T13:57:24-04:00 List-Id: Ryan wrote: > An article on Slashdot reads > (http://developers.slashdot.org/article.pl?sid=02/08/18/2053259) ... > "BRiX, unlike other modern operating systems, does not use hardware to > isolate and protect applications from each other. Instead, it uses a > single address space and relies on a safe-language to generate code that > will not access memory for which it does not own. Here we go again.. another DOS-like, memory wide open to corruption concept. PC's eventually, with the help of 286 and later got to the point where they could protect processes. Now we've regressed with the palms etc., back to this no-protection model. No matter how good the language is, there will always be occaisions where one process steps on another unless it is prevented from doing so in hardware. This is OK for research. Not good for running systems that must run as firewalls, or central hosts to university students! This model has been tried before BTW, with hardware protection (each process just has system wide unique addresses for memory objects). IIRC, one such system was called Opal. This language also > handles many checks at compile-time that would be performed at run-time > in other operating systems." > > What effect might this have on the development of AdaOS? Competition? > Inspiration? It seems to have several of the same goals in mind. > > Ryan IMHO, I don't think it amounts to anything more than a research effort. I can't see the world going to a less secure model (ie. no hardware memory protection), after seeing all the fighting with the security problems we already have in a more secure environment. I think there is a vast amount of work that could be done in the interest of a secure host O/S, that is [mostly?] immune to DOS attacks that can be launched by guest university accounts, for example. -- Warren W. Gay VE3WWG http://home.cogeco.ca/~ve3wwg