Yes, significantly. The JVM just flat out does not provide a sandbox. Remember t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		achierius 37 days ago \| parent \| context \| favorite \| on: Rethinking DOM from first principles Yes, significantly. The JVM just flat out does not provide a sandbox. Remember the bad old days of clicking on a suspicious link and getting pwnd? That's what we'd have if it weren't for modern JavaScript engines

graemep 37 days ago [–]

I thought the JVM had permissions restrictions in the days of Java applets?

ezst 37 days ago | [–]

I suppose it had, but as a large codebase written in a memory-unsafe language with unrestricted system access, in an era where browser plugins weren't sandboxed by design, it was a cat and mouse game.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact