Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It sounds like a security nightmare and I'm not sure about how efficient it can be for not user oriented tasks. But the ubiquity of the system is like what XML pretended to be but never was.


If it doesn't have networking (which it doesn't) one would imagine the security attack surface is significantly reduced, and pretty much (outside of insane NSA style radio-transmitter-in-your-cable style attacks) requires physical access, at which point many (most?) machines are sort of hosed anyways, unless you've got things like SED/FIPS, etc.


What stops someone from creating files that exploit memory safety or other security issues, then sending them to a TempleOS user? Sure, they have to load the file into the system, but if they're using the OS it'd be safe to assume there's a way to do this.


And then do what?

Exploiting a non-networked machine isn't very useful. There's no practical way to get any data back, to use it as a bot worker, or to send spam, so what's the point?


Maybe encrypt all their data and hold the keys ransom? I remember a few Windows viruses that did that a few years ago.


You must be young. Viruses were a thing in the 80s already.


Smuggle data out in whatever format the user saves data? Corrupt calculations so the user ends up destroying expensive equipment? It's the same issue as attacking airgapped networks.


Ever head of a little virus called stuxnet?


It's only a security nightmare if the threat model assumes hostile user access and a passive main user, which, as it's not multiuser, and most definitely not a consumer OS, doesn't seem too bad to me.


Read the article :) Not multi-user. No networking.


Hi Terry,

I can't reply to you directly. I didn't mean to imply that TempleOS is not multiprocessing. From what I gather there is only one user (with multiple processes) and that user owns all the files, hence no file permissions that say "this file belongs to user X" and "this file belongs to user Y", only user X can read/write/execute X's files, and the same for user Y. The author of the article linked to here states that TempleOS is a single user (but multiprocess!) system.

I wonder why you haven't implemented threads? Not enough of a benefit in your opinion? Aren't threads supported by modern CPUs. Don't they allow faster context switching than switching context for processes? Though I guess Erlang disagrees!


> I wonder why you haven't implemented threads?

What TempleOS calls “processes” is what you are used to calling “threads”.


There's no memory protection, so like for other multitasking systems without memory protection (like AmigaOS...) the process/thread distinction doesn't matter.


It is multiprocessing, but not fair sharing. I like to call it single-process multiple thread. There is no difference between "task", "Process" or "thread". It is single address map. Paging in not used, basically.


I don't think many people today realise how profoundly this can affect an OS (despite the many challenges). AmigaOS was the same, and it allowed a lot of hacks that are much more challenging to replicate in efficient ways on more modern OSs.


Why are all, but this comment of you, [dead]?


I think an admin has to approve his comments because he has been shadowbanned.

In the past he made racist and homophobic remarks and got shadowbanned. His mental illness is hard to understand at times. The same thing happened to him on Reddit. He has to use multiple accounts to get around the shadowbans.

I think he is like Brandon Eich who donated to the wrong charity, made good contributions and solid programming work, but holds opinions that are not socially acceptable.


>Brandon Eich

I'd take HolyC over Javascript any day.


The admins said a few months ago that they would add the possibility for high-karma users to unban select post of shadow banned accounts.

It might have landed (either in closed beta or I don't have enough karma to do it). Or maybe it was simply revived by an admin...


Terry,

You are currently shadow banned.


He knows this already.


Not anymore, apparently. At least the post I suppose you couldn't reply to in this thread isn't [dead] right now. Another comment of his still is.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: