From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham
	autolearn_force=no version=3.4.4
X-Google-Language: ENGLISH,ASCII-7-bit
X-Google-Thread: 103376,6394e5e171f847d1
X-Google-Attributes: gid103376,public
X-Google-ArrivalTime: 2001-09-07 01:04:46 PST
Path: 
 archiver1.google.com!newsfeed.google.com!newsfeed.stanford.edu!news.tele.dk!small.news.tele.dk!130.133.1.3!fu-berlin.de!uni-berlin.de!ailinel.cbb-automation.DE!not-for-mail
From: dmitry@elros.cbb-automation.de (Dmitry Kazakov)
Newsgroups: comp.lang.ada
Subject: Re: Ada OS Kernel features
Date: Fri, 07 Sep 2001 08:04:04 GMT
Message-ID: <3b987e18.2182875@news.cis.dfn.de>
References: <9n4euv$t9m$1@slb6.atl.mindspring.net>
 <3B964C7A.BC04374E@icn.siemens.de> <9n5o9n$37a$1@slb7.atl.mindspring.net>
 <3%ul7.3362$9z1.440040@news6-win.server.ntlworld.com>
 <wjwKHdGfRR9P@eisner.encompasserve.org>
 <UWOl7.11352$592.628767@news2-win.server.ntlworld.com>
NNTP-Posting-Host: ailinel.cbb-automation.de (212.79.194.99)
X-Trace: fu-berlin.de 999849844 6530789 212.79.194.99 (16 [77047])
X-Newsreader: Forte Free Agent 1.21/32.243
Xref: archiver1.google.com comp.lang.ada:12864
Date: 2001-09-07T08:04:04+00:00
List-Id: <comp.lang.ada>

On Thu, 6 Sep 2001 19:06:29 +0100, "chris.danx"
<chris.danx@ntlworld.com> wrote:

>
>> > I really don't get why a driver must have access to system structures or
>> > atleast those in kernel space, can you explain this?
>>
>> A driver has access to raw hardware.  Therefore it necessarily has
>> access to the system -- it could rewrite the copy of the OS on disk
>> if it chose.
>
>Perhaps, but that's a problem that could be solved, in part, by restricting
>what the drivers allowed to access.  Video drivers have no business using
>the disk, so their access to disk access ports should be denied.  Similar
>schemes should be used when appropriate.  It should not be possible for a
>driver to access things willy nilly.

Any shared device should be not allowed to be directly used in the
user mode. If a video driver operates in the user mode, then it is
possible to have an application that reads and updates the parts of
the screen of another application. Now consider that another
application is a part of home-banking software. Wellcome in the
MS-Windows world!

Regards,
Dmitry Kazakov