Hacker News new | past | comments | ask | show | jobs | submit login

> still advocating that user accounts are a waste of time for most desktops.

I mean, phones and tablets do fine without any user-like abstraction. You can sandbox apps without having a concept of multitenancy.




Every Android app runs as a different UID.

I'm not sure what you mean by "concept of multitenancy," but if you want to "sandbox apps," you cannot let side-channel attacks break that sandbox.


iPads do have a concept of multiple users, though only one can use it at once.


Android differentiates between user processes and root processes. I'm pretty sure iOS does as well, although maybe they've coded it as something weird.

I'm not seeing people here arguing that Linux could get by with only supporting 1 user account. I'm seeing people argue that the biggest reason they avoid running as root is just because userland applications complain about it. It's very difficult to do sandboxing if there isn't some kind of differentiation between a privileged and unprivileged process.

Regardless, Linux also doesn't really have good sandboxing by default, so I'm not completely sure what you're getting at. It's still a bad idea for people to run a Linux system as root.


iOS has a root user, that your code does not run as.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: