Message from JavaScript discussions

August 2017

— Yeah I will implement a "user mode" and "supervisor mode" of operation and will need some security in place

Message permanent page


Since it will be single threaded only one mode is possible at a time (normal for old Apple OS) and different things are allowed depending on mode

— Heh

— The videos kind of want to get away from "user" concepts

— It's more about "security by capability", rather than "security by identity"

— Nice

— If you give a user program the right to modify files in a subdirectory, that's ALOT better than giving it the rights of the user running it

Message permanent page

— Google Caja is based on this videos, which is basically a sandboxed DOM

— Interesting

— In this OS there will be 2 isolated contiguous address spaces, one for supervisor mode and one for user mode

Message permanent page

— The MMU would then check the mode, then translate memory access to protect supervisor code and data from the user side

Message permanent page

— Supervisor can reach both user and supervisor addresses while user can only access user addresses