From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0 ([2001:41d0:2:bcc0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms0.migadu.com with LMTPS id SEExDoSyqWAw6QAAgWs5BA (envelope-from ) for ; Sun, 23 May 2021 03:40:20 +0200 Received: from aspmx1.migadu.com ([2001:41d0:2:bcc0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0 with LMTPS id CIzkCYSyqWD7DAAA1q6Kng (envelope-from ) for ; Sun, 23 May 2021 01:40:20 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 949A29578 for ; Sun, 23 May 2021 03:40:19 +0200 (CEST) Received: from localhost ([::1]:45164 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lkd6I-0005JK-O3 for larch@yhetil.org; Sat, 22 May 2021 21:40:18 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:49812) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lkd5m-0004sg-Dy for guix-devel@gnu.org; Sat, 22 May 2021 21:39:46 -0400 Received: from mx1.riseup.net ([198.252.153.129]:36288) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lkd5j-0001nM-SJ for guix-devel@gnu.org; Sat, 22 May 2021 21:39:46 -0400 Received: from fews1.riseup.net (fews1-pn.riseup.net [10.0.1.83]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.riseup.net", Issuer "Sectigo RSA Domain Validation Secure Server CA" (not verified)) by mx1.riseup.net (Postfix) with ESMTPS id 4Fnjgy6YXVzDqCJ; Sat, 22 May 2021 18:39:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1621733982; bh=KZwRirKWfL3+ppJxzt2QNHi1Fdg77HEawMyB9MZpnyY=; h=Date:From:To:Cc:Subject:In-Reply-To:References:From; b=qu3n3biR4UQpyzKgRTZW3WhCP9vXR7HwegQtMeHmyOxt/J6GxKJcPAVkbZJJ9PQDq fRb6ajWhtDr0u2nOjETACWoA+ChNs7ShUbBDz1tuVpkfs0XB0SedeyqFCGDBUucKUd su9a5N4lrTII1YropkyC5AV6l2EUg8bBJLjB2xnk= X-Riseup-User-ID: E2228AC2E338187351D5EB0ADAA00C0A5E688534F63BEDC0DA3BC95DA10A4C88 Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews1.riseup.net (Postfix) with ESMTPSA id 4Fnjgx5HWYz5vkm; Sat, 22 May 2021 18:39:41 -0700 (PDT) Date: Sun, 23 May 2021 01:11:51 +0200 From: raingloom To: Leo Famulari Subject: Re: =?UTF-8?B?V2hhdOKAmXM=?= next? Message-ID: <20210523011151.5251fe1d@riseup.net> In-Reply-To: References: <87v97jhot4.fsf@inria.fr> <87tun0ahw5.fsf@dismail.de> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Received-SPF: pass client-ip=198.252.153.129; envelope-from=raingloom@riseup.net; helo=mx1.riseup.net X-Spam_score_int: -27 X-Spam_score: -2.8 X-Spam_bar: -- X-Spam_report: (-2.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: guix-devel@gnu.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: guix-devel Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org Sender: "Guix-devel" X-Migadu-Flow: FLOW_IN ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1621734019; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post:dkim-signature; bh=TiBC6dT9cC7ne/VyzvVBqsNyMu/O1+tqsdyeLDlNxIE=; b=KOXWuAAuHZtGr3r1sOTnNKpuGysfN5RI+2hzPD2fT9tjuQkGedoQn21hicHyhcTESAxoRQ ovh5pbHPO5kaPhfq+Lf9VgMaS1dOYOag75lY1tRyl5X9Y2e5MZJuaL6ix0u25uKaea2J5h ceMuQqQQru/bXH0TtjlQETnYw9BgGLF2GiOI3r34ZPxqYFm0Dw6BDf0F67rU/KY4fh/Opz Gi/B7fetMw8pkLbn/KU+m4MCwoXJp5PLN28FAsyF/spzlN1lUTJHcVgtVB1BXcCSmBADFP VfkiXz8Mxn6DiLieuK3FJN0SBHXseZ30UC4+q9KypTFF1oph/PejENCVAubVyw== ARC-Seal: i=1; s=key1; d=yhetil.org; t=1621734019; a=rsa-sha256; cv=none; b=GLgUIoM5aK4Y0R5BgZI6PJ1yPXXNZMhBxE0SWnKdkRe63ZKXVuMBpQC1IKqm+fdOrhRulc uXxExLAxK4X0By/sDOiDwzYFu4xvC/Rk6XZIY6hJ/iVGmamfR1BEdEdcRdBDaUusN3iH91 yybo4toP4Ae9JwzbiKPeOBS75JwybIASQudC3hh54fN06S58Uwd2fO84KUMmD/hDA+q4N/ 6+lXp5gcTF0BGqrNC6G3+pdfxyox+28aSPOG5QnzlqeiVOf2QbqpawiJp6yjajLR88rjNj iiyMDvDVD9aCW/erMRktDmNaxAe2NrjG92+mTbr3+XdMvEGjtaHSjWswhh8CVg== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=riseup.net header.s=squak header.b=qu3n3biR; spf=pass (aspmx1.migadu.com: domain of guix-devel-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-devel-bounces@gnu.org X-Migadu-Spam-Score: -0.33 Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=riseup.net header.s=squak header.b=qu3n3biR; dmarc=fail reason="SPF not aligned (relaxed)" header.from=riseup.net (policy=none); spf=pass (aspmx1.migadu.com: domain of guix-devel-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-devel-bounces@gnu.org X-Migadu-Queue-Id: 949A29578 X-Spam-Score: -0.33 X-Migadu-Scanner: scn1.migadu.com X-TUID: Eld5b2HsEKat On Tue, 18 May 2021 10:05:05 -0400 Leo Famulari wrote: > On Mon, May 17, 2021 at 10:35:22PM -0400, Joshua Branson wrote: > > I suppose someone should fix the Hurd vulnerabilities as reported > > here: > > > > https://lists.gnu.org/archive/html/bug-hurd/2021-05/msg00079.html > > > > I don't think the vulnerabilities have been disclosed yet nor has > > there been a fix yet. > > That message is the disclosure. > Why not put our eggs in a few more baskets with way fewer holes and more, uh, basket inspectors looking at them, like maybe packaging Minix, or OpenBSD, or MirageOS, or whatever? I think I stretched that metaphor but yknow what I mean. They have seen way more scrutiny than Hurd and also run on more architectures and while not GPL licensed, AFAIK they are all libre. Maybe they can't be used in the operating-system-kernel struct field, but I don't see anything wrong with using Guix to deploy Mirage unikernel images for instance. There is even a nascent Scheme unikernel project with Loko Scheme. Ooor maybe compile some things to WASM and use a WASM+WASI runtime. I hate webshit but at least there is already tooling and major porting efforts for WASM.