From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id KErpIdiod18iPgAA0tVLHw (envelope-from ) for ; Fri, 02 Oct 2020 22:25:28 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0 with LMTPS id sFrDHdiod185UwAA1q6Kng (envelope-from ) for ; Fri, 02 Oct 2020 22:25:28 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 676039400C9 for ; Fri, 2 Oct 2020 22:25:27 +0000 (UTC) Received: from localhost ([::1]:48972 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kOTUT-00061B-0Z for larch@yhetil.org; Fri, 02 Oct 2020 18:25:25 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:37462) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kOTOI-0005Yd-AJ for bug-guix@gnu.org; Fri, 02 Oct 2020 18:19:02 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:59395) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1kOTOI-0000xy-0C for bug-guix@gnu.org; Fri, 02 Oct 2020 18:19:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1kOTOH-0001YT-R4 for bug-guix@gnu.org; Fri, 02 Oct 2020 18:19:01 -0400 X-Loop: help-debbugs@gnu.org Subject: bug#43770: Geeks think securely: VM per Package (trustless state to devs and their apps) Resent-From: bo0od Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Fri, 02 Oct 2020 22:19:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 43770 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Ricardo Wurmus Received: via spool by 43770-submit@debbugs.gnu.org id=B43770.16016771295958 (code B ref 43770); Fri, 02 Oct 2020 22:19:01 +0000 Received: (at 43770) by debbugs.gnu.org; 2 Oct 2020 22:18:49 +0000 Received: from localhost ([127.0.0.1]:42708 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kOTO4-0001Y2-PQ for submit@debbugs.gnu.org; Fri, 02 Oct 2020 18:18:48 -0400 Received: from mx1.riseup.net ([198.252.153.129]:50064) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kOTO2-0001Xu-ME for 43770@debbugs.gnu.org; Fri, 02 Oct 2020 18:18:48 -0400 Received: from bell.riseup.net (bell-pn.riseup.net [10.0.1.178]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.riseup.net", Issuer "Sectigo RSA Domain Validation Secure Server CA" (not verified)) by mx1.riseup.net (Postfix) with ESMTPS id 4C34C9618jzDt1D; Fri, 2 Oct 2020 15:18:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1601677125; bh=KKEY8bUFzv4ElP6lwe3MAQlvkfI+2YHcOqEWUUM5YyU=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=STmU8EtiZRYscqxRyYBl+O19cRdKvtdbGdZfNEzqOFzB+i7iPxUSg6Nupub7JB8AY bk9TrmmNlkkq82IWr8wGJaO/wwtJQK2EwMgat6hSPjSCPZZdX/qeFPFZukZ2nuRlED BUQyTXMBaGKw0yO3RoIEa6aW48E5Gg71tcBWwGIM= X-Riseup-User-ID: 5D11B266F1C0C0C1008854F2673B228E168B2CC9895ED5C56782F68D4201F7AC Received: from [127.0.0.1] (localhost [127.0.0.1]) by bell.riseup.net (Postfix) with ESMTPSA id 4C34C82FhgzJnqj; Fri, 2 Oct 2020 15:18:43 -0700 (PDT) References: <0adb9d2b-22e6-412d-4148-fd032d191b6b@riseup.net> <87mu14e7k5.fsf@elephly.net> From: bo0od Message-ID: Date: Fri, 2 Oct 2020 22:18:24 +0000 MIME-Version: 1.0 In-Reply-To: <87mu14e7k5.fsf@elephly.net> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-Spam-Score: -1.7 (-) X-Mailman-Approved-At: Fri, 02 Oct 2020 18:25:17 -0400 X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: 43770@debbugs.gnu.org Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" X-Scanner: scn0 Authentication-Results: aspmx1.migadu.com; dkim=fail (rsa verify failed) header.d=riseup.net header.s=squak header.b=STmU8Eti; dmarc=fail reason="SPF not aligned (relaxed)" header.from=riseup.net (policy=none); spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Spam-Score: 0.09 X-TUID: xfbd4VR5y4l2 Hey, Actually what i wanted to say but seems i missed it, This security design can be engineered and implemented when Guixsd released based on GNU-Hurd Kernel. Because its going to be totally new kernel and having this feature is without question the best security feature for the future of security within operating systems. Otherwise we gonna fall into the same cycle of trust to outside package developers and their codes without preventive mechanism against if its malicious one. If you mean the bug report is not the place for this request, then i dont know where because i already discussed it in the IRC channel.(if there is somewhere else i can report this just tell me) ThX! Ricardo Wurmus: > > Hi, > > this does not look like an actionable bug report. What is it exactly > that ought to be done in your opinion? >