Hacker News new | ask | show | jobs
by myWindoonn 2927 days ago
Native Client had layered sandboxes and was still exploited. I suspect that sandboxing, in general, is not right; we must find safety and correctness by construction, not by ad-hoc rules or policy or permissions.
1 comments
baybal2 2927 days ago
This is a million dollar question, but it was answered long time ago: there is no substitute for a programmer who knows what he is doing.

This is something most companies can't do. Small co., can pull it out that for some times, but as companies grow, the temptation to "simply make money" overwhelms even most principled person.

link
cwyers 2927 days ago
The problem is that even when a programmer knows what they're doing, it does not then follow that I want them doing it.
link
digi_owl 2927 days ago
"We were so preoccupied with whether we could, that we didn't stop to question if we should"?
link