Re: Extreme memory usage for gnome-panel related apps
- From: Alan Cox <alan lxorguk ukuu org uk>
- To: Colin Walters <walters redhat com>
- Cc: "Nickolay V. Shmyrev" <nshmyrev yandex ru>, David Zeuthen <david fubar dk>, Martin Ebourne <lists ebourne me uk>, desktop-devel-list gnome org, jamie <jamiemcc blueyonder co uk>
- Subject: Re: Extreme memory usage for gnome-panel related apps
- Date: Sun, 2 Dec 2007 20:52:07 +0000
> But fundamentally right now the desktop is still one security domain,
> and I don't see that changing in the near future.
The desktop is quite a few security domains. Mail clients handle
certificates and dangerous remote content, other tools render untrusted
content like PDF, while the desktop panel probably deals in little more
dangerous than weather reports.
>
> > Not to mention a bunch of other problems. It's
> > probably better to just fix the VM's.
>
> Far harder - and I think it would likely require language semantics to
> change, in particular for Python.
>
> Having one VM for Python applets would not be rocket science. Someone
> just needs to spend the few days on it, and get patches to use it
> upstreamed.
For applets it would be a huge help and I agree not be a security issue.
More generally it would make SELinux rules harder to get tight.
Taking out the commonly used python apps and replacing them with compiled
code would be an even bigger performance and size leap.
Alan
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]