I’ve been thinking. Android implements app permissions on top of Linux, Flatpak does it too. But why is it it’s not part of the kernel?
Like all executable files would be sandboxed and would only be able to access syscalls and parts of the file system if they were allowed to. Making sandboxing the default instead of having to restrict programs.
I’m not a kernel developper so this question may be naive, but it bothers my mind. I guess part of it is because of historical reasons but are there any practical ones that make it not feasable?
EDIT : Thank you all for your answers, almost all of you were very nice and explained things clearly
You don’t even know how to use “you”, and you have the audacity to be pedantic about OP’s use of “we”?
You weren’t replying to OP!
And at this moment, you’re not talking to the person who commented above. I just thought I would explain that to prevent your further confusion.