Date: Mon, 21 Dec 1998 23:13:26 +0200 From: Mark Murray <mark@grondar.za> To: Matthew Dillon <dillon@apollo.backplane.com> Cc: Dag-Erling Smorgrav <des@flood.ping.uio.no>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc rc.conf Message-ID: <199812212113.XAA63667@greenpeace.grondar.za> In-Reply-To: Your message of " Mon, 21 Dec 1998 12:12:17 PST." <199812212012.MAA47267@apollo.backplane.com> References: <199812212012.MAA47267@apollo.backplane.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Matthew Dillon wrote: > My estimate is that the sandbox would work just fine on 99% of the > FreeBSD installations out there. The basic problem is that Paul Vixie > doesn't take sandboxes seriously so he doesn't bother fixing the crappy > interface scanning or UDP binding code to allow the use of a single IP. > Instead, bind goes out of its way to fart around with interface scanning > and rescanning and all sorts of shit that it doesn't need to do. The "sandbox" concept in Unix is quite badly flawed. Given that in Java it is difficult enough to implement properly, trying to do it in Unix is JA impossible. The next-best approach is to fix the software, not break the OS. M -- Mark Murray Join the anti-SPAM movement: http://www.cauce.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199812212113.XAA63667>