The CloudFlare blog discusses that idea when they talk about having an "agent process" to hold cryptographic material, but they list drawbacks like having to develop two processes, implement a well-defined interface, and enforce ACLs. I'm not convinced that "developing two processes" is a reason not to do it, since the kernel is effectively just the second process now, but everything else makes sense.
It's unfortunate though since this is one thing I think Windows does decently well. The Windows crypto and TLS APIs do use a key isolation process by default (LSASS) and have a stable interface for other processes to use it [0]. I imagine systemd could implement something similar, but I also know that there are very strong opinions about adding more surface area to systemd.
Interestingly, Microsoft has been trying to get ahead of this for a couple of years now with their National Partner Clouds program [0], which they describe as:
> designed for scenarios where full ownership and operational independence from Microsoft is required
In France's case, Capgemini and Orange have a joint venture to operate datacenters that Microsoft runs Azure and Office on top of [1]. Moving away from Windows and Teams would still reduce their dependence on Microsoft substantially. But if the core goal is to reduce dependence on non-European suppliers, I would be wary of the French government buying services from "Bleu" when it's mainly Microsoft and a couple of consultancies in a trenchcoat.
I've been trying uBO Lite myself for a few months, and anyone who uses YouTube will absolutely notice that it's worse at blocking. Lite tends to delay playback at the start of a video for as long as the blocked ads would've been, making the site feel slower, and once in a while an ad will slip past the blocker anyway.
I am not so sure if that is the light version. In my (outdated) Ungoogled Chromium which still has classic uBlock, YouTube videos also have delays or do stop playing completely after a few seconds. So I have switched to the FreeTube software to watch YouTube videos. I can recommend that.
Not the whole thing: a lot of the Windows org chart is still under Rajesh Jha in Experiences + Devices, or scattered around Azure with Scott Guthrie. But they've already been pushing Windows Copilot and Bing Ads and widgets, so I imagine the plan is more of the same.
It's not just the kids growing up now. I'm sure plenty of millennials who watched YouTube when AudioSwap was a thing will recognize "Dreamscape" by 009 Sound System:
Could you elaborate? AMD spun their fabrication arm off into GlobalFoundries a while back, and they seem to be doing okay. I thought that would be a good precedent for Intel divesting its fabs too, but I'd love to hear any counterpoints to that.
AMD spun off GlobalFoundries to save itself, and suffered greatly for many years afterward. Let's not pretend it was some kind of masterstroke done by a company that was firing smoothly on all cylinders.
Do a Google search for the stock price. AMD announced the spinoff in October 2008.
It's unfortunate though since this is one thing I think Windows does decently well. The Windows crypto and TLS APIs do use a key isolation process by default (LSASS) and have a stable interface for other processes to use it [0]. I imagine systemd could implement something similar, but I also know that there are very strong opinions about adding more surface area to systemd.
[0] https://blackhat.com/docs/us-16/materials/us-16-Kambic-Cunni...
reply