Re: [jos-general] isolate API

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

On 2/28/02 5:45 PM, "Jonathon Tidswell" <jo...@cs...> wrote:

> [ ... ]
> Gilbert describes a unix fork()/exec() model.
> 
> A spawn() model has many security advantages, in particular it defaults
> to not giving the new process information, which is safer because its too
> easy to forget to override or revoke information/access of a new process.
> 
> Also it is highly desirable to be able to isolate components within an
> application (such as plugins) so a simple application based model will
> have problems of its own.

I agree. Plus Isolate is being developed specifically to aide container
implementations such as EJB servers to run plugins in isolated environments
as you point out.  I think it is not going to be productive ask them or to
try and tweak it to fit a normal unix fork model.

I think Isolate may be a better model for a JOS process system anyhow.  I
question the technique of using full unix processes as a good model for what
a JOS application should look like.  We may want to follow more of a
applet/midlet/servlet/jini service set of models for JOS applications...
You're either in a container (applet/midlet/servlet) or you're in a
completely standalone network service JVM where access to anything else is
done using a network/distributed computing model (jini service).

Just my random thoughts.

-iain

_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com