Why modern OS security is based on file permissions? Why not base it on what user passes to a program? If I pass a file to a function, then it has access to it. That way no malware can open backdoor without my explicit actions. It's that simple! Unix designer must be retard, it's good he is dead.
Name:
FrozenVoid2011-10-16 7:56
Network access will be managed by special kernel filter which would also deny access to network for programs which have not been specially written into network access list which would specify what locations(netmasks and DNS regexp) and protocols the program will be allowed to use(e.g. DNS/PING/UDP all/TCP all/HTTP)
with complex rules to make any network access for malicious software impossible without approval.