Hacker News new | past | comments | ask | show | jobs | submit login

Yes, it is an argument against JITs. For a little while, OS builders were making progress on mitigation techniques, then the browsers all got together and decided it would be cool to allow attackers more control over the executable parts of the address space.



Without JITs, you greatly limit the languages you can run quickly (no JavaScript, no C#, no Java, no Lua, etc. etc.) - that's a lot to give up.

3D is also a lot to give up.

I understand if you happen to not care about speed or 3D, and that's fine, but most people do.


I do care about speed and 3D. But I don't think the web needs to be the delivery mechanism for all software. 900 years ago, they compiled Thunderbird once and everybody downloaded and used it. Now, every individual end user compiles gmail on a daily basis. The SaaS model has a lot of advantages. It has disadvantages too. I'm ok with only a subset of all potential programs being viable in a SaaS model.

In particular, I think allowing malicious people to run programs on your computer by default because, hey it's safe in the sandbox, is a terrible idea.


> I do care about speed and 3D. But I don't think the web needs to be the delivery mechanism for all software.

Fair enough, I agree but put the line in a different place.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: