• IAm_A_Complete_Idiot@sh.itjust.works
    link
    fedilink
    arrow-up
    3
    ·
    1 year ago

    The proper way to handle issues like these is process level permissions (i.e. capability systems), instead of user level. Linux CGroups, namespaces, etc. are already moving that way, and in effect that’s the way windows is trying to head too. (Windows has its own form of containerization called AppContainers, which UWP apps use. Windows also has its own capability system).