From: Iain S. <iai...@ya...> - 2002-03-01 21:41:16
|
On 2/28/02 5:45 PM, "Jonathon Tidswell" <jo...@cs...> wrote: > [ ... ] > Gilbert describes a unix fork()/exec() model. > > A spawn() model has many security advantages, in particular it defaults > to not giving the new process information, which is safer because its too > easy to forget to override or revoke information/access of a new process. > > Also it is highly desirable to be able to isolate components within an > application (such as plugins) so a simple application based model will > have problems of its own. I agree. Plus Isolate is being developed specifically to aide container implementations such as EJB servers to run plugins in isolated environments as you point out. I think it is not going to be productive ask them or to try and tweak it to fit a normal unix fork model. I think Isolate may be a better model for a JOS process system anyhow. I question the technique of using full unix processes as a good model for what a JOS application should look like. We may want to follow more of a applet/midlet/servlet/jini service set of models for JOS applications... You're either in a container (applet/midlet/servlet) or you're in a completely standalone network service JVM where access to anything else is done using a network/distributed computing model (jini service). Just my random thoughts. -iain _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com |