The security model is not the only factor, but it is one very important factor. Why do I have to open Moebius sync to keep syncthing synchronization running? Why is the whole landscape build under the assumption that a cloud storage is more trustworthy than local storage?
> But requiring user permissions for apps to do shady shit is a good thing.
> Why do I have to open Moebius sync to keep syncthing synchronization running
Because it’s a mobile OS and every single spent CPU cycle is a detriment to battery life? There is absolutely nothing in the security model that would prevent it from running - but it is essential that processes have a “structured” lifetime.
E.g. compare how much more graceful android is in low-memory situations, asking apps to serialize their state and then stopping the last used one. Linux oomkiller will just reap my whole display manager for some reason.
Sigh. Okay, but Wayland doesn't work this way because it is a Desktop software. I don't understand the complaints here - we're upset that we, the user, are empowered to give and remove permissions from applications?
Nobody is turning Linux into iOS. But iOS DOES have some good ideas. It's good, for example, that for an app to access your photos library they have to ask. I know for a fact you prefer that to the app just opening your photos without your knowledge and doing whatever they want with them.
Similarly, I see no reason why Chrome should be able to read the display output and keyboard inputs of my graphical password manager. It should ask me.
> You would be surprised how many content creator gets by with a single ipad.
Can you name one professional software developer?
Probably, you can. But I don't want to limit myself to that sub standard environment. I love my iPad for some activities, for others iOS is just impractical.
Why? I want to have some applications that can always see the mouse cursor like, xeyes. Because that allows me to implement a better customized desktop environment.
Then give that piece of code extra-special permissions. As I’ve said in another comment, the days where you downloaded your software from the sunsite or tsx11.ai.mit.edu FTP servers and could be confident that it and all its dependencies were trustworthy are unfortunately gone for a very long time.
Yes, it's empowering because your "rights model" is one where you don't have rights. You don't know what applications are using what data, and you also can't stop it. Is that empowering? I think no.
But if you wanna argue Chrome should be able to read all your keyboard inputs whenever it wants be my guest. I can't fathom why people want that type of setup.
Why is X11 unsandboxable? A similar but reverse approach to Xwayland, something like waylandX could be used to be part of the overall sandbox approach to run untrusted applications. That would have the advantage that the severe restrictions and feature degradations of wayland are only applied to those untrusted sandboxed applications, not everything.
Ultimately, X11 opens up everything. What you suggest (WaylandX) is essentially allow-by-default.
When this is the case and there is a supply chain attack, what you think is a trusted application (and therefore not running under "WaylandX") can very well keylog you or take screenshots of your desktop without your consent.
In a deny-by-default model ala Wayland, applications will have to ask for permissions before they can do something considered to be privileged.
And once all the Wayland jank is fixed it's going to be just as "crusty" and "full of hacks" and "unmaintainable" as X is now and the cycle is going to repeat again :|
But wayland merges more components into one server than X11 did. Therefore, there is a need for more wayland server then there was a need for X11 servers.
I think, I am similar. I've discovered source minimaps when they came out first almost 20 years ago. And I loved the sense of spatialness they added to the code .
Whether the CPU is busy because of a loop with a sleep depends on the ration of the sleep time and the time to perform the rest of one loop iteration. Doing stuff in a loop iteration that takes 1min and then adding a ms sleep will not drop CPU usage a measurable amount.
The question is about waiting, i.e. when you have no real work to do. If you have significant work to do then there is no point in sleeping until that work is done.
reply